da25129c36065ff77a8980e3b3d385973975284e30244c7bd372cf3787b6aea3

General

Target

da25129c36065ff77a8980e3b3d385973975284e30244c7bd372cf3787b6aea3
Size

71KB
MD5

c1b6fee68e946e2ec9be29596635829b
SHA1

591fa4c6c267e51353163171cdb61eb8f5ae6ea1
SHA256

da25129c36065ff77a8980e3b3d385973975284e30244c7bd372cf3787b6aea3
SHA512

1c638597cc5e5f00b06f2a9ae0b6daa345a7df9c7aa36468d1f478676e36bd09b89e8386f5c909fe334df0bed72df9640d2e63b82ff3d46a479074a02bb96842
SSDEEP

1536:yQ/RO/hKarodKfCsRTdWG+Zm5xXfSCzjjffiLVXzLQg:yQ/ROFrQsRTwTUzzHiLV

Score

N/A

Malware Config

Signatures

Files

da25129c36065ff77a8980e3b3d385973975284e30244c7bd372cf3787b6aea3
.exe windows x86

003102c5d6d7693c407a820bb73ffaf2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
lstrlenA
GetModuleHandleA
GetFileAttributesA
GetLastError
WideCharToMultiByte
GetFileType
GetCPInfo
lstrcpynA
GetCommandLineA
SetLastError
FreeLibrary
GetStringTypeA
lstrcmpA
GetStdHandle
lstrcpyA
GetStringTypeW
lstrcmpiA
GetModuleFileNameA
HeapFree

advapi32

RegDeleteKeyW
RegOpenKeyA
RegOpenKeyExA
RegEnumKeyW
RegDeleteKeyA
RegCreateKeyExW
RegQueryInfoKeyW
RegDeleteValueW
RegQueryValueExW
RegEnumKeyA
RegLoadKeyW
RegEnumValueA
RegReplaceKeyW
RegLoadKeyA
RegFlushKey
RegGetKeySecurity
RegQueryValueW
RegQueryValueExA
RegCreateKeyExA

user32

CalcMenuBar
GetWindowTextLengthA
CreateIcon
CloseWindow
IsWindow
GetFocus
CopyImage
CopyIcon
AppendMenuW
CopyRect
InsertMenuA
GetDlgItem
LoadCursorA
DrawTextW
GetMenu
GetWindowTextA

comctl32

InitCommonControls
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Remove
ImageList_Read
ImageList_GetImageCount
ImageList_Create
ImageList_DragMove
ImageList_GetIcon
ImageList_Replace
ImageList_DragEnter
ImageList_AddIcon
ImageList_Copy
ImageList_ReplaceIcon
ImageList_LoadImage
ImageList_DrawIndirect

Sections

.qKBNQ
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.EoQoK
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xPPMEW
Size: 2KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.oTMI
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

003102c5d6d7693c407a820bb73ffaf2

Headers

File Characteristics

Imports

kernel32

advapi32

user32

comctl32

Sections

.qKBNQ Size: 7KB - Virtual size: 7KB

.EoQoK Size: 55KB - Virtual size: 54KB

.xPPMEW Size: 2KB - Virtual size: 99KB

.oTMI Size: 2KB - Virtual size: 1KB

.qKBNQ
Size: 7KB - Virtual size: 7KB

.EoQoK
Size: 55KB - Virtual size: 54KB

.xPPMEW
Size: 2KB - Virtual size: 99KB

.oTMI
Size: 2KB - Virtual size: 1KB