82c6298b6554989dd81251aedf22ab50022215255542a783e73c7bd81e9c16e3

General

Target

82c6298b6554989dd81251aedf22ab50022215255542a783e73c7bd81e9c16e3
Size

156KB
MD5

f42aea23b5070990a696dc3d3664a262
SHA1

4057b4f31a7e5425e5256fd817577861a28ba0da
SHA256

82c6298b6554989dd81251aedf22ab50022215255542a783e73c7bd81e9c16e3
SHA512

a0d7df85850efb7ed8f7d3f4ead1612a90e97316f80461196c63dd07bb6f0eb87199922b1b15559efaa37476421de4d9b1a70ef949d10134545603222725943d
SSDEEP

3072:NG+/Ql/CQUZSRgpimDYCMa+iLtbsRSRUK+13ScFoEJW528aZHQj:N5c/CQ5VmDvMcFdRmI4wWt

Score

N/A

Malware Config

Signatures

Files

82c6298b6554989dd81251aedf22ab50022215255542a783e73c7bd81e9c16e3
.exe windows x86

89f70b711a844bb2ae6a4953855f5491

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetVersionExA
LocalFree
lstrcpynW
FormatMessageW
GetLocaleInfoW
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenW
lstrcpyW
GlobalFree
SetLastError
WideCharToMultiByte
GetProcAddress
GetModuleHandleA
LocalAlloc
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedDecrement
CloseHandle
GetCurrentThreadId
lstrcatW
GetModuleFileNameW
GetModuleHandleW
SetErrorMode
InterlockedIncrement
GetVersion
lstrcmpW
GlobalFlags
GetVersionExA
FreeLibrary
LoadLibraryA
GlobalDeleteAtom
GlobalFindAtomW
GlobalAddAtomW
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
ExitProcess
RtlUnwind
GetSystemTimeAsFileTime
GetCommandLineA

user32

PeekMessageW

advapi32

RegQueryValueExW
RegCloseKey
RegOpenKeyExW

ole32

StgOpenStorageEx

oleaut32

GetActiveObject
SafeArrayGetRecordInfo
VarI2FromUI2
VariantInit

Sections

.text
Size: 71KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 310B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89f70b711a844bb2ae6a4953855f5491

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Sections

.text Size: 71KB - Virtual size: 118KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 79KB - Virtual size: 79KB

.reloc Size: 512B - Virtual size: 310B

.text
Size: 71KB - Virtual size: 118KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 79KB - Virtual size: 79KB

.reloc
Size: 512B - Virtual size: 310B