3a5668484065d01144ae0a5753a7622bc8ae9d7a83384fe8a48329bdeda4e1eb

General

Target

3a5668484065d01144ae0a5753a7622bc8ae9d7a83384fe8a48329bdeda4e1eb
Size

376KB
MD5

1f563ecdc90e294dc538fb7555d0c660
SHA1

4e7f1a3bdfb4f25a52f3cc6f2df330f8b862bde5
SHA256

3a5668484065d01144ae0a5753a7622bc8ae9d7a83384fe8a48329bdeda4e1eb
SHA512

de9fc392e268027845520b9312834b50866b09bbde811c3ef12467a4d62cffac346ab556141eedc9d2c4152ac7ad8a295e41f14c537e4f77b0eec8bbb4bc48f5
SSDEEP

6144:LzVVDgbBxQJ1rXXmVIgG3shjy3snfodmr28ctc6KKANu3rsP:Lzr0bfQnTX0wSjUsnfo4uZKHQs

Score

N/A

Malware Config

Signatures

Files

3a5668484065d01144ae0a5753a7622bc8ae9d7a83384fe8a48329bdeda4e1eb
.dll windows x86

63099aeb214607657b140625a0d6690a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

FreeLibrary
VirtualFree
DeleteCriticalSection
GlobalSize
IsBadReadPtr
GetDateFormatA
TlsSetValue
GetLastError
GetProcAddress
VirtualAlloc
GlobalFree
CreateFileA
TlsAlloc
GetModuleHandleA
GlobalAlloc
Sleep
TlsFree
InitializeCriticalSection
SetLastError
GetModuleFileNameA
SetThreadPriority
GetStartupInfoA
LeaveCriticalSection
QueryPerformanceCounter
GetTickCount
EnterCriticalSection
TlsGetValue
GetCurrentThreadId
LoadLibraryA

user32

ReleaseDC
GetWindowRect
GetParent
GetDC
MessageBoxA
wsprintfA

msvcrt

fclose
sscanf
exit
strncmp
fread
memmove
_iob
_CIpow
strcmp
rand
fseek
fwrite
sprintf
strstr
_ftol
memset
strtok
_assert
fprintf
abort
getenv
realloc
ftell
memcpy
malloc
strcpy
atol
free
fgets
fopen
_stricmp

Exports

Exports

AsFile
HasKey
Number_Lshift
_GetSlice
_Repeat

Sections

.text
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63099aeb214607657b140625a0d6690a

Headers

File Characteristics

Imports

advapi32

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 115KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 92KB - Virtual size: 92KB

.rsrc Size: 84KB - Virtual size: 83KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 116KB - Virtual size: 115KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 84KB - Virtual size: 83KB

.reloc
Size: 8KB - Virtual size: 7KB