f4aebc283c4a659d3b80de3f1b6c0ad7e5af32128862805760fc30a8a88acd64

General

Target

f4aebc283c4a659d3b80de3f1b6c0ad7e5af32128862805760fc30a8a88acd64
Size

961KB
MD5

5ebed0f9985e74469262a1acd0f8f75e
SHA1

d6176a62b8cc64726b2379026638ccfafde9aecd
SHA256

f4aebc283c4a659d3b80de3f1b6c0ad7e5af32128862805760fc30a8a88acd64
SHA512

67cc8652f291427b26135fe4a5048c3b068c120ce64d485d2f29fe7ed50c4a9a60162ceee3984c2efd520f2a99d4ed6a1a6ceb5c009001e3fc27aaafca8c981e
SSDEEP

24576:7YWWAr9eFSeKq6iOAqJcbr3Ed4Fp+xhRD9zdN:7YD+9/o33EdGSrzdN

Score

N/A

Malware Config

Signatures

Files

f4aebc283c4a659d3b80de3f1b6c0ad7e5af32128862805760fc30a8a88acd64
.exe windows x86

40839594e8e1c7ddf3630f0a8d30c8fb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExA
RegCloseKey
RegDeleteValueA
RegOpenKeyA

shell32

Shell_NotifyIconW
ShellExecuteA
SHGetSpecialFolderPathA

shlwapi

StrToIntA
PathFileExistsA

msvfw32

DrawDibSetPalette
ICRemove

kernel32

lstrcpynA
GetModuleFileNameA
LoadLibraryExA
GetPrivateProfileStringA
GetModuleHandleA
SetErrorMode
ReadFile
CreateFileA
lstrlenW
SetFilePointer
GetLogicalDrives
lstrcpynW
GetEnvironmentVariableA
lstrlenA
FreeLibrary
GetDriveTypeW
GetPrivateProfileIntA
GetTickCount
ExitProcess
GetVolumeInformationW
GlobalAlloc
CloseHandle

user32

DestroyWindow
DefWindowProcA
TrackPopupMenu
GetAsyncKeyState
GetCursorPos
SendMessageA
GetMessageA
LoadImageA
RegisterWindowMessageA
SetMenuDefaultItem
PostQuitMessage
InsertMenuItemA
FindWindowA
DestroyMenu
DestroyIcon
CharNextW
RegisterClassA
CharNextA
SetForegroundWindow
LoadStringW
InsertMenuItemW
CreateWindowExA
GetWindowTextW
CreatePopupMenu
EnableMenuItem
MessageBoxA
DispatchMessageA

Sections

.text
Size: 516KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 405KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40839594e8e1c7ddf3630f0a8d30c8fb

Headers

File Characteristics

Imports

advapi32

shell32

shlwapi

msvfw32

kernel32

user32

Sections

.text Size: 516KB - Virtual size: 515KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 405KB - Virtual size: 3.7MB

.rsrc Size: 37KB - Virtual size: 36KB

.text
Size: 516KB - Virtual size: 515KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 405KB - Virtual size: 3.7MB

.rsrc
Size: 37KB - Virtual size: 36KB