424932e6dac9cf4f0eefb32eeb8132d76b0a0d1364793bbd19dd513f95858e06

General

Target

424932e6dac9cf4f0eefb32eeb8132d76b0a0d1364793bbd19dd513f95858e06
Size

364KB
MD5

98066634d35855a6577e2f8cdfa137c0
SHA1

537520ed501e78913417c077bb0bec3e3ea6e93c
SHA256

424932e6dac9cf4f0eefb32eeb8132d76b0a0d1364793bbd19dd513f95858e06
SHA512

9e8c3b6ea4294fe762f482de6f5cb7238c632c98cf138b52c93167346a6d8e2997ea233fdcf21403e8d60c4c4f3728af5aa6ea169878ea4259f7db9bb88967f2
SSDEEP

6144:DdAyCiFHd1AFVgcFmSI6/Lxqd6U8iM7acBupGRJb3+w/xWSFdtyRcMb:qyC2uVgc/I6S6UbzpoJxLac

Score

N/A

Malware Config

Signatures

Files

424932e6dac9cf4f0eefb32eeb8132d76b0a0d1364793bbd19dd513f95858e06
.dll windows x86

503564c718e0e13beb23347870965408

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

ftell
_CIpow
_iob
memmove
sprintf
memset
free
malloc
strcpy
calloc
memcpy
fopen
realloc
abort
_assert
strtok
rand
atol
fgets
getenv
_stricmp
strcmp
atoi
fseek
fread
fclose
sscanf
fwrite
strncmp
_ftol
exit
strstr
bsearch
fprintf

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

GetCurrentThreadId
TlsAlloc
VirtualFree
FreeLibrary
EnterCriticalSection
QueryPerformanceCounter
GlobalAlloc
SetLastError
GetModuleFileNameA
GetModuleHandleA
LeaveCriticalSection
TlsSetValue
SetThreadPriority
VirtualAlloc
GetProcAddress
DeleteCriticalSection
GetTickCount
CreateFileA
TlsFree
LoadLibraryA
TlsGetValue
GetDateFormatA
InitializeCriticalSection
GetStartupInfoA
Sleep
IsBadReadPtr
GetLastError
GlobalFree
GlobalSize

user32

ReleaseDC
GetParent
wsprintfA
GetWindowRect
GetWindowThreadProcessId
GetDC
WindowFromDC
MessageBoxA

Exports

Exports

Method_Type
Print
StandardError
_Readline
_SetSlice
_flagmask
set_shift

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

503564c718e0e13beb23347870965408

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 92KB - Virtual size: 92KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 8KB - Virtual size: 7KB