b82bc0f7e57410023d66ea70d4db9fcbff7f06bf21f7576b98c9cefafd43ac78

General

Target

b82bc0f7e57410023d66ea70d4db9fcbff7f06bf21f7576b98c9cefafd43ac78
Size

103KB
MD5

13410f95bf8cc04ecafe5254a776dad0
SHA1

f36d06e95dd9f719004958fc4ae6de4671a7b9cb
SHA256

b82bc0f7e57410023d66ea70d4db9fcbff7f06bf21f7576b98c9cefafd43ac78
SHA512

62bc069e2ca311a72559dec94c8561fecd3f48ded4c77a7e51ef5260c2ac76c0e3eddf549673a5238104db94bd23e3d0d2fbe4883d29b306fc6a07fa65da9938
SSDEEP

1536:2a4FycTbHR5Eob222cmQ7yxpW/pEOKxSm:2abcXx6oNP760/SOk

Score

N/A

Malware Config

Signatures

Files

b82bc0f7e57410023d66ea70d4db9fcbff7f06bf21f7576b98c9cefafd43ac78
.exe windows x86

4b56820603d68ffe85af51ef249527fa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetFileSize
CreateFileA
CreateProcessA
ContinueDebugEvent
WaitForDebugEvent
LocalAlloc
CloseHandle
LocalUnlock
ReadProcessMemory
LocalLock
GetThreadContext
GetProcAddress
GetModuleHandleA
SetThreadContext
WriteProcessMemory
TerminateProcess
HeapDestroy
GetFileType
GetStringTypeW
GetStringTypeA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
LocalFree
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetCPInfo
GetACP
GetOEMCP
HeapAlloc
VirtualAlloc
HeapReAlloc
LoadLibraryA
MultiByteToWideChar

user32

MessageBoxA
DispatchMessageA
PeekMessageA

advapi32

RegCreateKeyExA
RegQueryValueExA

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 794B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4b56820603d68ffe85af51ef249527fa

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 60KB - Virtual size: 72KB

.data Size: 4KB - Virtual size: 794B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 60KB - Virtual size: 72KB

.data
Size: 4KB - Virtual size: 794B