fc44efdb911bd3b2d711b765641e9d703f38154217390ee781a4780973f589bd

General

Target

fc44efdb911bd3b2d711b765641e9d703f38154217390ee781a4780973f589bd
Size

220KB
MD5

7e307f333ffe3d18f7d15b8cd11706de
SHA1

ca6f94643c64af19db1536c6a79efdc2301c2155
SHA256

fc44efdb911bd3b2d711b765641e9d703f38154217390ee781a4780973f589bd
SHA512

5d042ca93af935e436caee7cf30254080265646b8d3053469678b7fb841bb5789a8bffe27a3ed0c0950f77fb127d4665f387c88915a676ca1cb94e712031d134
SSDEEP

3072:+FJsl2zxxbbhfzrDV09sizD0psUZP4HukP0JcF3tzF7ifZJJrwttgEsXkJNWg:+PblbVqsS3PpcJctFsffBwttEXkB

Score

N/A

Malware Config

Signatures

Files

fc44efdb911bd3b2d711b765641e9d703f38154217390ee781a4780973f589bd
.exe windows x86

7195faba60a9047d2a3b48f5e1f5a75c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LocalLock
VirtualLock
VirtualAlloc
VirtualFree
VirtualQuery
OpenFileMappingA
Sleep
VirtualProtect
LoadLibraryA
GetProcAddress
OpenSemaphoreA
GetModuleHandleA
HeapAlloc
ResetEvent
DeleteTimerQueue
OpenMutexA
VirtualAllocEx
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
HeapSize
InterlockedExchange
RtlUnwind
FlushFileBuffers
GetEnvironmentStrings
HeapReAlloc
GetCPInfo
GetOEMCP
GetSystemInfo
GetACP
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapDestroy
HeapCreate
HeapFree

user32

DispatchMessageA
GetWindow
GetSysColorBrush
EndPaint
InSendMessage
LoadCursorA
GetDesktopWindow
GetDC
GetCursorPos
IsWindowUnicode
SetTimer
ReleaseDC
DrawTextA
GetParent

gdi32

PatBlt

psapi

EmptyWorkingSet
GetModuleBaseNameA

msvfw32

DrawDibClose

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7195faba60a9047d2a3b48f5e1f5a75c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

psapi

msvfw32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 48KB - Virtual size: 45KB

.rsrc Size: 140KB - Virtual size: 139KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 48KB - Virtual size: 45KB

.rsrc
Size: 140KB - Virtual size: 139KB