715b9ffc44d0b3abef263a0cff8e0aa400eb40d286a5a74ee08d4ea667d0079a

Sharing

Copy URL Twitter E-mail

General

Target

715b9ffc44d0b3abef263a0cff8e0aa400eb40d286a5a74ee08d4ea667d0079a
Size

155KB
MD5

001a81212ddb33390ba0cb599c777150
SHA1

69fc764c8ff067a8e602fe23bfeb8382a59b635c
SHA256

715b9ffc44d0b3abef263a0cff8e0aa400eb40d286a5a74ee08d4ea667d0079a
SHA512

34ef21f206485a77ce844db5f4bb7960efa68de41e23997d95858844bd1de9ed9a8819338bb4144b2ccd80074f9bd663ddc9e059ef343f86215eb4c5662d5103
SSDEEP

3072:LGbxtwMLKxzAdDamwnJwTYjDkVgd3lvsnNYG15I8u0JaUbdV5:vhzAzwnJwYHsnazN01d

Score

N/A

Malware Config

Signatures

Files

715b9ffc44d0b3abef263a0cff8e0aa400eb40d286a5a74ee08d4ea667d0079a
.exe windows x86

9a957a6d8c111029f7d39418bec41dbd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegEnumKeyExW
RegEnumValueA
RegCreateKeyExA
RegQueryValueExW
RegEnumKeyW
RegQueryValueA
RegQueryInfoKeyA
RegLoadKeyA
RegDeleteKeyA
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExW
RegCreateKeyW
RegOpenKeyW
RegDeleteKeyA
RegDeleteKeyW
RegOpenKeyExA
RegQueryValueA
RegEnumValueA
RegDeleteValueW
RegQueryInfoKeyW
RegCreateKeyExA
RegOpenKeyA
RegDeleteValueA
RegQueryInfoKeyA
RegLoadKeyW
RegEnumValueW
RegQueryValueExW
RegEnumKeyA
RegReplaceKeyW

user32

CopyRect
CloseWindow
DialogBoxParamW
DrawIconEx
InsertMenuA
LoadCursorA
CopyImage
DrawIcon
EndDialog
DrawTextW
AppendMenuW
DrawTextA
GetDlgItem
IsMenu
CopyRect
CopyImage
GetDlgItem
DrawTextA
GetWindowTextA
AlignRects
DrawIcon
IsMenu
InsertMenuA
GetFocus
AppendMenuW
CloseWindow
GetCursor
CalcMenuBar
GetMenu
DrawTextW
LoadCursorA
AppendMenuW
GetWindowTextLengthA
IsMenu
CloseWindow
GetFocus
LoadCursorA
CopyImage
BlockInput
DrawIconEx
GetMenu
CopyRect
DialogBoxParamW
EndDialog
InsertMenuA
IsWindow
DrawIcon
DrawTextA
GetDlgItem

kernel32

OpenFile
GetOEMCP
ExitThread
GetConsoleMode
GetFileSize
GetACP
GetConsoleOutputCP
GetLastError
FreeConsole
GetLastError
DeleteFileA
FindAtomA
CreateProcessA
GetCommandLineA
DeleteAtom
GetOEMCP
GlobalFree
GetACP
GetCommandLineA
GetVersion
GetLastError
FindAtomA
GetConsoleMode
GetFileTime
CreateThread
GetFileSize
CreateDirectoryA
DeleteFileW
GetCommandLineA
GetComputerNameA
GlobalFree
GetFileTime
GetStdHandle
CreateDirectoryA
GetOEMCP
GetProcessHeap
GetLastError
OpenFile
DeleteFileA
DeleteAtom
GetFileSize
GetCPInfo
CreateThread
CreateProcessA
Sleep

Sections

.itext
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 108KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a957a6d8c111029f7d39418bec41dbd

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.itext Size: 27KB - Virtual size: 26KB

.edata Size: 8KB - Virtual size: 8KB

.init Size: 108KB - Virtual size: 368KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 4KB

.itext
Size: 27KB - Virtual size: 26KB

.edata
Size: 8KB - Virtual size: 8KB

.init
Size: 108KB - Virtual size: 368KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 4KB