a6471fbb60c06f034af154a873f0ce7a9b5956b38bce3c130d29f759f7872fc5

Sharing

Copy URL Twitter E-mail

General

Target

a6471fbb60c06f034af154a873f0ce7a9b5956b38bce3c130d29f759f7872fc5
Size

60KB
MD5

2036dead248e070c10a6c1cbaede5f4d
SHA1

a18d657b12f1529865be58a9e43e3d8fcf5c5f64
SHA256

a6471fbb60c06f034af154a873f0ce7a9b5956b38bce3c130d29f759f7872fc5
SHA512

f79020ea06cc3bce3fe704aa6b9e497bdda8a3753c2d5a5ef6e22479e1493a6558f9a36b58eac48ed882e817eb75b4423fea3337a2b822e042f06f2d90c555f7
SSDEEP

1536:0BAWODLjIUrqCnITp7a7gKLhJcg5Azrd6rt:WAWOrrqCITp7KgKLrcg5tr

Score

N/A

Malware Config

Signatures

Files

a6471fbb60c06f034af154a873f0ce7a9b5956b38bce3c130d29f759f7872fc5
.exe windows x86

a7ee5cd3e4747acbe8a4999a47a1fb85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegEnumKeyExA
RegQueryInfoKeyA

kernel32

lstrcmpiA
lstrlenA
lstrcpynA
lstrlenW
FreeLibrary
SizeofResource
GetLastError
LoadResource
FindResourceA
LoadLibraryExA
CloseHandle
MultiByteToWideChar
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
InterlockedIncrement
GetCurrentThreadId
GetModuleFileNameA
GetModuleHandleA
GetCurrentProcess
WaitForSingleObject
lstrcpyA
InitializeCriticalSection
HeapDestroy
DeleteCriticalSection
lstrcatA
GetCPInfo
GetProcAddress
LoadLibraryA
InterlockedDecrement
OpenProcess
OpenEventA
CreateEventA
GetVersionExA
GetCommandLineA
SetEvent
HeapCreate
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
HeapFree
HeapAlloc
HeapReAlloc
RtlUnwind
ExitProcess
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
VirtualAlloc
WriteFile
VirtualFree
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetVersion

user32

RegisterClassA
DestroyWindow
FindWindowA
GetWindowThreadProcessId
DefWindowProcA
CreateWindowExA
PeekMessageA
MsgWaitForMultipleObjects
DispatchMessageA
CharNextA

ole32

CoInitialize
CoUninitialize
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc

oleaut32

LoadRegTypeLi
SetErrorInfo
RegisterTypeLi
LoadTypeLi
GetActiveObject
VarI4FromStr

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7ee5cd3e4747acbe8a4999a47a1fb85

Headers

File Characteristics

Imports

advapi32

kernel32

user32

ole32

oleaut32

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 11KB - Virtual size: 12KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 9KB - Virtual size: 9KB