875df74ff702f4eec46199448141986492d9a2c7ee27ccf198f59fd9d1556088

General

Target

875df74ff702f4eec46199448141986492d9a2c7ee27ccf198f59fd9d1556088
Size

724KB
MD5

63251d086968681f4904125ce8ecf640
SHA1

80e7bcac6f2fdca59aecfc99d868adb01222c049
SHA256

875df74ff702f4eec46199448141986492d9a2c7ee27ccf198f59fd9d1556088
SHA512

b8087a657546b58f40577b7a352538857209f8e9016553922cd6350238bcf5d4a23f515ad6d66dd068ec3ffd0607beffec27a1d13b49075d82effeb37f5f3bd9
SSDEEP

6144:ste3O8GQlz1AV5odCerrQPwmpL6lUoZpv1X75JlPkbHuOD6reiKT1tTOwcl7FhcR:iYG6aVGdxrrQZ56i0pv6OenEMNgMCLw

Score

N/A

Malware Config

Signatures

Files

875df74ff702f4eec46199448141986492d9a2c7ee27ccf198f59fd9d1556088
.dll windows x86

64aab9a4ef80c9fdff261fb61b07fd71

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
LoadLibraryA
TlsGetValue
GlobalAlloc
GetDateFormatA
GlobalSize
GetProcAddress
TlsAlloc
SetThreadPriority
Sleep
GetModuleHandleA
EnterCriticalSection
CreateFileA
GetCurrentThreadId
QueryPerformanceCounter
TlsSetValue
IsBadReadPtr
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
TlsFree
GlobalFree
InitializeCriticalSection
GetModuleFileNameA
GetStartupInfoA
SetLastError
GetTickCount
VirtualAlloc
FreeLibrary

user32

ReleaseDC
MessageBoxA
GetWindowRect
GetDC
GetParent
wsprintfA
GetWindowThreadProcessId

msvcrt

fread
memcpy
_ftol
sprintf
memmove
calloc
realloc
exit
fwrite
fclose
fseek
_stricmp
strcmp
getenv
_CIpow
ftell
strncmp
fprintf
memset
_iob
free
fopen
sscanf
strtok
_assert
abort
atol
strcpy
fgets
rand
malloc
strstr

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

Exports

Exports

Check
Format
GetFlags
KeyboardInterrupt
_SetSlice
get_copyright
set_sBIT
write_row

Sections

.text
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 256KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

64aab9a4ef80c9fdff261fb61b07fd71

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

Exports

Exports

Sections

.text Size: 180KB - Virtual size: 178KB

.rdata Size: 68KB - Virtual size: 67KB

.data Size: 256KB - Virtual size: 256KB

.rsrc Size: 208KB - Virtual size: 205KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 180KB - Virtual size: 178KB

.rdata
Size: 68KB - Virtual size: 67KB

.data
Size: 256KB - Virtual size: 256KB

.rsrc
Size: 208KB - Virtual size: 205KB

.reloc
Size: 8KB - Virtual size: 6KB