b6bbf7251c135fcbb9278856352352a9274a585a8cfa03c6fb60907540622a4e

General

Target

b6bbf7251c135fcbb9278856352352a9274a585a8cfa03c6fb60907540622a4e
Size

314KB
MD5

aef64f9363a36a5e4ddb52d618cb0f7f
SHA1

e2df62c79e260e07d66482d9b03634a34b8f459d
SHA256

b6bbf7251c135fcbb9278856352352a9274a585a8cfa03c6fb60907540622a4e
SHA512

970e312f7451a6f0b45760ccf4e536a695814577f580b2af757c293c000bf38615c0e0255f1856296bb3b0e2da4b6b876bcf009fc8fd3549689f1eeaca592d48
SSDEEP

6144:uG/BRusgA9ZStl4cwP8NgwZcfxYYdvL99Xz84hge2I:ppRBZZSD4lP8NZcbL9Rpf2I

Score

N/A

Malware Config

Signatures

Files

b6bbf7251c135fcbb9278856352352a9274a585a8cfa03c6fb60907540622a4e
.exe windows x86

e520ce0e8daf3daafb0d7c9b4948882a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegQueryValueExA
RegSetValueA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegOpenKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegDeleteValueA
RegSetValueExA

user32

wsprintfA
TrackPopupMenuEx
GetParent
MessageBoxA
IsWindowVisible
GetWindowTextA
TranslateAcceleratorA
LoadCursorA
EndDialog
EnumWindowStationsW
SetRectEmpty
LoadStringA
RegisterClassA
FindWindowA
ClientToScreen
CharNextW
GetWindowTextLengthA
DialogBoxParamA
GetClientRect
CreateWindowExA
EnableMenuItem
SendMessageA
CreateDialogIndirectParamA
GetWindowLongA
CharPrevW
InvalidateRect

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemFree
CreateOleAdviseHolder

kernel32

lstrcpyA
IsBadWritePtr
GetCurrentThreadId
WideCharToMultiByte
FlushFileBuffers
LoadResource
FindResourceA
EnterCriticalSection
HeapAlloc
lstrcatA
ExitProcess
lstrlenW
LockResource
LeaveCriticalSection
HeapFree
GetProcessHeap
lstrlenA
HeapReAlloc

secur32

GetUserNameExW

Sections

.text
Size: 206KB - Virtual size: 205KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.venue
Size: 5KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e520ce0e8daf3daafb0d7c9b4948882a

Headers

File Characteristics

Imports

advapi32

user32

ole32

kernel32

secur32

Sections

.text Size: 206KB - Virtual size: 205KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 100KB - Virtual size: 100KB

.venue Size: 5KB - Virtual size: 78KB

.text
Size: 206KB - Virtual size: 205KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 100KB - Virtual size: 100KB

.venue
Size: 5KB - Virtual size: 78KB