c4c830ec44986724414aa84da319f9662ee3fbfc8f91df85ff48cc26061a0c1c

General

Target

c4c830ec44986724414aa84da319f9662ee3fbfc8f91df85ff48cc26061a0c1c
Size

165KB
MD5

f82a83e0282dc3aa3c338722be9fe62c
SHA1

46d7eb2d3ab3a5e1029cb0f59d65525e656c0456
SHA256

c4c830ec44986724414aa84da319f9662ee3fbfc8f91df85ff48cc26061a0c1c
SHA512

8ef02fe0ea4a7ef9823eed0f07cd11299373ce3b62ee4c577c87f19e21e4b6613a1bb6760b1a9ab0fe23a30fc17d828e3afdb08927734ce14ed5a683216ad1be
SSDEEP

3072:blOUm7XwfLA9UkY2hevleSNdpSHCINjez6S0mZ:NYXwfLkpedeSNwCyjez65m

Score

N/A

Malware Config

Signatures

Files

c4c830ec44986724414aa84da319f9662ee3fbfc8f91df85ff48cc26061a0c1c
.exe windows x86

768ba8fb3680dc23057b742712900845

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
IsWindow

shell32

SHGetSpecialFolderLocation
SHCreateDirectoryExW
CommandLineToArgvW

kernel32

ExitProcess
FindFirstFileW
FindNextFileW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetModuleHandleA
GetProcAddress
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
lstrlenW
InterlockedExchange

msvcrt

_cexit
_controlfp
_exit
_initterm
_ismbblead
_wcsdup
_wcslwr
exit
free
memset
printf
wcsstr
wprintf
_amsg_exit
__setusermatherr
__set_app_type
__p__fmode
__p__commode
_XcptFilter
__getmainargs

gdi32

PolyDraw
ArcTo

advapi32

RegQueryValueExW
RegOpenKeyExW
RegCloseKey

Exports

Exports

ADeviceResumePlay
ADoTest
BrowseForFolderW
DeleteTexture
FreeTempFileList
GenerateUniqueFileName
OpenWFileStreamShare
SetFontOnRichEd
StrToUintA

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 361B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

768ba8fb3680dc23057b742712900845

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

kernel32

msvcrt

gdi32

advapi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 19KB - Virtual size: 19KB

.rsrc Size: 512B - Virtual size: 361B

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 19KB - Virtual size: 19KB

.rsrc
Size: 512B - Virtual size: 361B