964d7273e5d64a7ff60f1897766e30b721189930ffe661563344ef6e653bee29

General

Target

964d7273e5d64a7ff60f1897766e30b721189930ffe661563344ef6e653bee29
Size

96KB
MD5

9ab4971b50dd0761b4bf18481625e4c8
SHA1

cedb92913e68e49068ca9503d876a781fe2749d1
SHA256

964d7273e5d64a7ff60f1897766e30b721189930ffe661563344ef6e653bee29
SHA512

c993ff00a1f246a29d1cc07adeebb713c0123f73b5f94b8a314b569702956977e730cc413445db4deee9c5ce93ba6085ad27a29586f5a923ea970e3f25b6c336
SSDEEP

1536:B5YzUoBF8VySdz7W1xk8Qov4voHzLnTi4YIAKh:TYwoihWPjQZvoTLnTi4T

Score

N/A

Malware Config

Signatures

Files

964d7273e5d64a7ff60f1897766e30b721189930ffe661563344ef6e653bee29
.exe windows x86

bad5f1df6535cbc6b8ca95eacbdc10b3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
WriteFile
CreateFileA
GetVersionExA
DeleteFileA
WaitForSingleObject
CreateProcessA
GetEnvironmentVariableA
GetShortPathNameA
ResumeThread
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
GetModuleFileNameA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetProcAddress
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
GetStringTypeW
SetHandleCount
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW

user32

wsprintfA
EndDialog
PostQuitMessage
SendMessageA
PostMessageA
BeginPaint
EndPaint
DefWindowProcA
DestroyWindow
CreateWindowExA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DialogBoxParamA

shfolder

SHGetFolderPathA

Sections

.text
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 864B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bad5f1df6535cbc6b8ca95eacbdc10b3

Headers

File Characteristics

Imports

kernel32

user32

shfolder

Sections

.text Size: 16KB - Virtual size: 12KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 68KB - Virtual size: 69KB

.rsrc Size: 4KB - Virtual size: 864B

.text
Size: 16KB - Virtual size: 12KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 68KB - Virtual size: 69KB

.rsrc
Size: 4KB - Virtual size: 864B