e167bb0b4f4b82a4d1932a8aeb7348ab6202ed2213aad121618210241af325d1

General

Target

e167bb0b4f4b82a4d1932a8aeb7348ab6202ed2213aad121618210241af325d1
Size

185KB
MD5

4dd9208267d78e8e937aeb00ec1d64e7
SHA1

635704cc8b8a5bcfa6631ff42f0b4e3a6a4c3620
SHA256

e167bb0b4f4b82a4d1932a8aeb7348ab6202ed2213aad121618210241af325d1
SHA512

fa363332b64430f1301a4dc6b0acee46eee0d8cb6cb2482d8e993b5749b001707745e608dfb39b63947d8ccb52d3e02d635eb855a7b4222412d2047cae2475d0
SSDEEP

3072:QupBi6pxfRK0uvDnfIVOywu1MghVg8PCDrx0zIbWnZT3DJRUVAfK0lYP44t6gi+:JXf40uvLry1MWPCHqzIbAZlfK2Yrt6o

Score

N/A

Malware Config

Signatures

Files

e167bb0b4f4b82a4d1932a8aeb7348ab6202ed2213aad121618210241af325d1
.exe windows x86

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
RegQueryValueA
RegOpenKeyExA
RegReplaceKeyA
RegDeleteKeyW
RegReplaceKeyW
RegCreateKeyExW
RegCreateKeyW
RegEnumKeyExA
RegDeleteKeyA
RegEnumValueW
RegEnumValueA
RegQueryValueExA
RegLoadKeyA
RegDeleteValueW

kernel32

GetLocalTime
GetDateFormatA
DeleteFileA
lstrcmpiA
GetCommandLineA
GetFileSize
GlobalFree
GlobalAlloc
lstrcmpA
lstrcpynA
GetStringTypeA
GetCPInfo
Sleep
GetStdHandle
GetStringTypeW
GetLastError

comctl32

ImageList_EndDrag
ImageList_Read
ImageList_LoadImage
ImageList_GetIconSize
InitCommonControls
ImageList_Copy
ImageList_GetImageCount
ImageList_DragMove
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_Create
ImageList_GetDragImage
ImageList_Replace
ImageList_AddMasked
ImageList_GetIcon
ImageList_LoadImageW

user32

DrawTextA
LoadMenuA
InsertMenuA
DrawIcon
CalcMenuBar
GetWindowTextA
LoadCursorA
IsMenu
GetDC
DrawTextW
DrawIconEx
GetDlgItem
CopyImage
DialogBoxParamW
GetFocus
GetCursor
AlignRects

Sections

.mElE
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.yPID
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tRkf
Size: 7KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LVMRKi
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Mtby
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c040ef205fe83099519bcac7fb03fad

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

Sections

.mElE Size: 15KB - Virtual size: 15KB

.yPID Size: 156KB - Virtual size: 156KB

.tRkf Size: 7KB - Virtual size: 212KB

.LVMRKi Size: 1024B - Virtual size: 1KB

.Mtby Size: 1024B - Virtual size: 2KB

.mElE
Size: 15KB - Virtual size: 15KB

.yPID
Size: 156KB - Virtual size: 156KB

.tRkf
Size: 7KB - Virtual size: 212KB

.LVMRKi
Size: 1024B - Virtual size: 1KB

.Mtby
Size: 1024B - Virtual size: 2KB