fad2c5df4605343e982fdf04e6db58ee728fa8b25fbf7730fd1325ef636b6912

General

Target

fad2c5df4605343e982fdf04e6db58ee728fa8b25fbf7730fd1325ef636b6912
Size

10KB
MD5

49ebaa10e3fe3036931d3f9760342422
SHA1

8d9e70df455cea638a4bc5cc00df58d9225b6b58
SHA256

fad2c5df4605343e982fdf04e6db58ee728fa8b25fbf7730fd1325ef636b6912
SHA512

011579eaec8e14165943212a3c68519eae7e35eaa0851df1f696717ba0a763569d9e2fd060d36918c8effd3b1650b7d3178ab6a03a51e5c882fc738af7ba00ac
SSDEEP

192:y/lclH4GhfBfmZil9L1bVMAL2vtVYPe136PAOJVRju3hn+3z9e:gq+Gbqilp1+NVVP1qPbBy

Score

N/A

Malware Config

Signatures

Files

fad2c5df4605343e982fdf04e6db58ee728fa8b25fbf7730fd1325ef636b6912
.exe windows x86

9667c6b021094bd7d0cfdd57a80bceb2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateConsoleScreenBuffer
DeleteFiber
DisableThreadLibraryCalls
EnumCalendarInfoExA
EnumResourceLanguagesW
ExitProcess
GetBinaryType
GetConsoleTitleW
GetCurrentThread
GetDiskFreeSpaceA
GetExitCodeThread
GetNamedPipeHandleStateW
GlobalAddAtomA
HeapLock
LoadLibraryExA
LocalAlloc
LocalReAlloc
Module32Next
MoveFileExA
Process32Next
RtlFillMemory
SetCommConfig
SetFileAttributesA
SetTimeZoneInformation
SizeofResource
SuspendThread
Thread32Next
TlsSetValue
VirtualProtect

advapi32

AddAuditAccessAce
ClearEventLogA
CryptDecrypt
CryptEnumProviderTypesA
DeleteAce
DuplicateTokenEx
EnumServicesStatusW
GetSecurityDescriptorDacl
GetSecurityInfo
GetServiceDisplayNameA
GetServiceKeyNameA
LockServiceDatabase
LookupSecurityDescriptorPartsW
ObjectDeleteAuditAlarmW
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA
RegisterServiceCtrlHandlerA
ReportEventW
SetEntriesInAuditListA

user32

BringWindowToTop
ChildWindowFromPointEx
CloseClipboard
DdeCmpStringHandles
DestroyIcon
DestroyWindow
EqualRect
GetAsyncKeyState
GetClassInfoExA
GetClassNameW
GetCursor
GetDlgCtrlID
GetKeyNameTextW
GetLastActivePopup
GetMenuContextHelpId
GetPriorityClipboardFormat
GetPropW
IsWindow
LoadBitmapW
MapVirtualKeyExA
SetClassWord
SetDebugErrorLevel
SetWindowContextHelpId
SetWindowPos
SetWindowRgn
SystemParametersInfoA
ValidateRgn

Sections

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9667c6b021094bd7d0cfdd57a80bceb2

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 512B - Virtual size: 4KB

.data Size: 8KB - Virtual size: 24KB

.idata Size: - Virtual size: 20KB

.rsrc Size: - Virtual size: 12KB

.text
Size: 512B - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 24KB

.idata
Size: - Virtual size: 20KB

.rsrc
Size: - Virtual size: 12KB