eeccf49396a860632d351ec43264026fc730d63297b6296d5208504eb96232c2

General

Target

eeccf49396a860632d351ec43264026fc730d63297b6296d5208504eb96232c2
Size

314KB
MD5

32f7a87c3cff5b1accd78d7d339282f0
SHA1

353b739f430f6b4e9fb9acdd674e40ee49d484c1
SHA256

eeccf49396a860632d351ec43264026fc730d63297b6296d5208504eb96232c2
SHA512

d3ca91ba94812c41e92b3cc134d86efe6214ec1c107cd9c5a278e3d9237efc5af4020171e015858f9f7d75168a279517e6bb62df2ac5a6449412f5d9626d6d32
SSDEEP

6144:bIL1VNz/2zuLy2OigfPVFar4TwLFUvCqs3zg8RcRHhmpOl9H68ye4JQow:bAgNLaETFvCqMzg8RWvXyZ

Score

N/A

Malware Config

Signatures

Files

eeccf49396a860632d351ec43264026fc730d63297b6296d5208504eb96232c2
.exe windows x86

0d04ad58f65f7dd1cef8d68faf081775

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

secur32

GetUserNameExW

kernel32

lstrcpynA
FindResourceA
GetCurrentThreadId
GetVersion
InterlockedIncrement
GetProcessHeap
HeapFree
FlushFileBuffers
DeleteCriticalSection
InitializeCriticalSection
FreeLibrary
DisableThreadLibraryCalls
lstrlenA
lstrcpyA
GetProcAddress
GetFileAttributesA
HeapAlloc
LoadLibraryA
ExitProcess
HeapReAlloc
WideCharToMultiByte
GetModuleFileNameA
LoadResource
lstrlenW
LockResource
EnterCriticalSection
MultiByteToWideChar
InterlockedDecrement
lstrcatA
LeaveCriticalSection
GetWindowsDirectoryA
IsBadWritePtr
GetLocaleInfoA

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CreateOleAdviseHolder

user32

SetRectEmpty
LoadStringA
DialogBoxParamA
CreateWindowExA
CharNextW
FindWindowA
IsWindowVisible
GetParent
CreateDialogIndirectParamA
CharPrevW
TranslateAcceleratorA
GetWindowTextLengthA
TrackPopupMenuEx
EnableMenuItem
wsprintfA
ClientToScreen
RegisterClassA
EndDialog
GetWindowTextA
LoadCursorA
MessageBoxA
EnumWindowStationsW
GetWindowLongA
SendMessageA
GetClientRect
InvalidateRect

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
RegSetValueA
RegDeleteValueA
RegQueryInfoKeyA
RegSetValueExA

Sections

.text
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0d04ad58f65f7dd1cef8d68faf081775

Headers

File Characteristics

Imports

secur32

kernel32

ole32

user32

advapi32

Sections

.text Size: 205KB - Virtual size: 205KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 100KB - Virtual size: 100KB

.venue Size: 5KB - Virtual size: 79KB

.text
Size: 205KB - Virtual size: 205KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 100KB - Virtual size: 100KB

.venue
Size: 5KB - Virtual size: 79KB