95e02f619eb73b4252439c903ed3b665e3c4709dd999486c08be60f3df11d2f3

General

Target

95e02f619eb73b4252439c903ed3b665e3c4709dd999486c08be60f3df11d2f3
Size

10KB
MD5

4999747bdf0d24ccd08731800ab08e0d
SHA1

1a306d7942fc3b34d19cf350da663ed4b8fc9512
SHA256

95e02f619eb73b4252439c903ed3b665e3c4709dd999486c08be60f3df11d2f3
SHA512

71a77b25dc30d05b80c4003367811270cebf7085bc81cf84cea9cc704f3869d1b4e43a3939926574f94e4f6adf7e38284fe7cae8d0c7f0cd4123ad85bd8d2692
SSDEEP

192:ofXIZyKCEiVuNasTOK3r7pUfI5yFyXP1oynh8WneRuTi:owLCE4uN5X3r7pUCk61f8WneRuTi

Score

N/A

Malware Config

Signatures

Files

95e02f619eb73b4252439c903ed3b665e3c4709dd999486c08be60f3df11d2f3
.exe windows x86

4133fac5ce1064fa435ef463bb2e70c6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_adjust_fdiv
__setusermatherr
__CxxFrameHandler
__getmainargs
_acmdln
exit
__set_app_type
_except_handler3
_controlfp
_initterm
_XcptFilter
_exit
wcslen
__p__fmode

mfc42

ord2915
ord800
ord537

kernel32

GetStartupInfoA
GetModuleHandleA
lstrlenA
CreateToolhelp32Snapshot
Process32First
Process32Next
LoadLibraryA
GetModuleFileNameA
GetTempPathA
GetSystemDirectoryA
GetWindowsDirectoryA
DeleteFileA
MultiByteToWideChar
CreateMutexA
GetLastError
CreateThread
CloseHandle
ExitProcess
Sleep
WritePrivateProfileStringA
GlobalAlloc

user32

SendInput
wsprintfA
CreateWindowExA
SetWindowLongA
LoadBitmapA
ReleaseDC
UpdateWindow
GetMessageA
TranslateMessage
DispatchMessageA
SetWindowPos
FindWindowA
VkKeyScanW
ShowWindow
GetCursorPos
GetWindowRect
GetWindowLongA
GetDesktopWindow
GetWindow
GetTopWindow
IsWindowVisible
GetParent
GetWindowTextA
SetForegroundWindow
SendMessageA
SetWindowTextA
GetDC
FindWindowExA
GetKeyState

gdi32

CreateFontA
CreateCompatibleDC
SelectObject
SetBkColor
SetTextColor
CreateSolidBrush
BitBlt

shlwapi

StrCmpNIA

iphlpapi

GetAdaptersInfo

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4133fac5ce1064fa435ef463bb2e70c6

Headers

File Characteristics

Imports

msvcrt

mfc42

kernel32

user32

gdi32

shlwapi

iphlpapi

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 11KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 11KB

.rsrc
Size: 2KB - Virtual size: 1KB