c8972a0aa5d5fd893ffc494732ced8e30985e6df46af9144b2bf183a36b5dd41

Sharing

Copy URL Twitter E-mail

General

Target

c8972a0aa5d5fd893ffc494732ced8e30985e6df46af9144b2bf183a36b5dd41
Size

121KB
MD5

19b9560937635a102342b4f9d0170d4c
SHA1

42b2a3e1891e19a4cd1d8e24a98df012cd59a4a7
SHA256

c8972a0aa5d5fd893ffc494732ced8e30985e6df46af9144b2bf183a36b5dd41
SHA512

9056b67214fc5254da179cbf5c1bdea3444d0fa15964f9423f8ef0e6c11118ec7feb7d3f380396bdcd7b3069a446926302a5f8cf7315fef0e35f3428fe4c5e69
SSDEEP

3072:A5urm0irBIlvbLbe7m52FADA2oSSNgA7fIjus:wuySlTfMm52aD4s

Score

N/A

Malware Config

Signatures

Files

c8972a0aa5d5fd893ffc494732ced8e30985e6df46af9144b2bf183a36b5dd41
.exe windows x86

0921019d302c00b90b744a6469562fbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExA
RegEnumKeyExW
RegGetKeySecurity
RegCreateKeyW
RegDeleteValueW
RegDeleteValueA
RegQueryValueA
RegDeleteKeyA
RegCreateKeyExW
RegFlushKey
RegQueryValueExW
RegEnumKeyW
RegQueryInfoKeyA
RegEnumKeyA
RegReplaceKeyA
RegLoadKeyW
RegEnumValueA
RegQueryValueExA
RegQueryInfoKeyW

user32

CopyRect
LoadMenuA
DialogBoxParamA
GetDlgItem
EndDialog
CreateIcon
DialogBoxParamW
CalcMenuBar
DrawTextA
GetFocus
GetMenu
InsertMenuA
CloseWindow
LoadCursorA
IsWindow
AlignRects
GetWindowTextLengthA
GetDC

comctl32

ImageList_GetImageCount
ImageList_Destroy
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_GetDragImage
ImageList_Remove
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_BeginDrag
ImageList_DrawIndirect
ImageList_Draw
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Read
ImageList_DragLeave
ImageList_DragEnter
ImageList_EndDrag
ImageList_Merge

kernel32

GetFileAttributesA
GetStringTypeA
lstrcpynA
GetDateFormatA
GetStringTypeW
HeapFree
lstrlenA
GetStdHandle
GetModuleFileNameA
GetCPInfo
CloseHandle
WideCharToMultiByte
GlobalFree
GetLastError
GetLocalTime
DeleteFileA
lstrcmpiA
FreeLibrary

Sections

.RJuzvA
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.aCdIq
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.igPa
Size: 7KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.FwwP
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xxxN
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0921019d302c00b90b744a6469562fbc

Headers

File Characteristics

Imports

advapi32

user32

comctl32

kernel32

Sections

.RJuzvA Size: 15KB - Virtual size: 14KB

.aCdIq Size: 93KB - Virtual size: 92KB

.igPa Size: 7KB - Virtual size: 134KB

.FwwP Size: 1024B - Virtual size: 1KB

.xxxN Size: 1024B - Virtual size: 1KB

.RJuzvA
Size: 15KB - Virtual size: 14KB

.aCdIq
Size: 93KB - Virtual size: 92KB

.igPa
Size: 7KB - Virtual size: 134KB

.FwwP
Size: 1024B - Virtual size: 1KB

.xxxN
Size: 1024B - Virtual size: 1KB