982432f3b4929e9c16059c6fe4a42f8908cf53634fee3c0e86cc91ab7d74c7d8

Sharing

Copy URL

Twitter E-mail

General

Target

982432f3b4929e9c16059c6fe4a42f8908cf53634fee3c0e86cc91ab7d74c7d8
Size

199KB
MD5

bd18b47195aed8dfd6d0c98e65f85f8c
SHA1

d8c543acbf2b00470c88c51038e547717e330251
SHA256

982432f3b4929e9c16059c6fe4a42f8908cf53634fee3c0e86cc91ab7d74c7d8
SHA512

57752b67d960c36ecf220587bc5436c202bee0c2dc3e99d592be3198479c51b8492963e48d75dd2f53b3e44de7091176f7361a90773707c61e6c3f8095ef41a0
SSDEEP

3072:LXEWdDOkAsEuOdNiQfLbJJ+bos8XuxB5JvseA+VweFKAF9+6:LfSbsEuOd5f3JJGoixB3vsP+J9+6

Score

N/A

Malware Config

Signatures

Files

982432f3b4929e9c16059c6fe4a42f8908cf53634fee3c0e86cc91ab7d74c7d8
.dll windows x86

f4ab58f4ddc1bfaafc6a594b4d7e88bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExW
RegQueryValueA
RegEnumKeyA
RegCloseKey
RegLoadKeyA
RegEnumValueW
RegQueryInfoKeyW
RegDeleteKeyW
RegQueryValueExW
RegEnumKeyExA
RegCreateKeyW
RegOpenKeyExA
RegDeleteKeyA
RegEnumValueW
RegEnumValueA
RegEnumKeyA
RegCreateKeyW
RegDeleteKeyA
RegDeleteValueW
RegCloseKey
RegReplaceKeyW
RegDeleteKeyW
RegEnumKeyExW
RegQueryValueExA

kernel32

DeleteAtom
WriteFile
GetFileTime
OpenFileMappingA
CopyFileW
ReadFile
ReadConsoleA
FindFirstFileA
GetLastError
ExitThread
DeleteFileW
GetStdHandle
CopyFileExA
GlobalFree
CreateProcessA
GetFileSize
GetCommandLineA
GetCPInfo
Sleep
GetConsoleMode
WriteFile
DeleteFileA
GetFileSize
DeleteFileW
ExitThread
GetLastError
ReadConsoleW
GetCPInfo
CopyFileA
CopyFileW
OpenFile
ReadConsoleA
CreateThread
ReadFile
GetCommandLineA
GetFileSize
Sleep
GetLastError
GetComputerNameA
CopyFileW
ReadConsoleW
GetFileTime
CopyFileExA
FindFirstFileA
WriteFile
DeleteFileW
CopyFileA
GetConsoleMode
DeleteFileA
ReadConsoleA
CopyFileExW
CopyFileW
DeleteFileA
ReadConsoleW
CreateDirectoryA
FindAtomA
FindFirstFileA
GetConsoleMode
GetCPInfo
CopyFileA
OpenFile
GetCommandLineA
GetLastError
DeleteAtom
ExitThread
GetFileSize
DeleteFileW
ReadConsoleW
OpenFileMappingA
Sleep
CreateThread
FindAtomA
ReadFile
CreateProcessA
GetComputerNameA
GetConsoleMode
GetComputerNameA
GlobalFree
OpenFile
WriteFile
OpenFileMappingA
ReadFile
DeleteFileA
CopyFileExW
GetConsoleMode
GetStdHandle
GetCommandLineA
Sleep
GetLastError
CopyFileExA
GetCPInfo
CreateDirectoryA
DeleteAtom
ExitThread
GetFileTime

user32

CloseWindow
GetMenu
GetWindow
CopyIcon
DrawTextW
GetWindowTextA
AlignRects
CopyImage
BlockInput
IsWindow
LoadCursorA
DrawIcon
GetWindowTextLengthA
DrawIconEx
InsertMenuA
CopyIcon
DrawTextW
GetDlgItem
CloseWindow
AppendMenuW
GetCursor
CopyImage
DrawTextA
InsertMenuA
AlignRects
DrawIconEx
CalcMenuBar

Sections

DATA
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 999B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b7065
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 486B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4ab58f4ddc1bfaafc6a594b4d7e88bf

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

DATA Size: 11KB - Virtual size: 11KB

.rdata Size: - Virtual size: 999B

.INIT Size: 180KB - Virtual size: 179KB

.b7065 Size: 5KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 486B

.reloc Size: 512B - Virtual size: 61KB

DATA
Size: 11KB - Virtual size: 11KB

.rdata
Size: - Virtual size: 999B

.INIT
Size: 180KB - Virtual size: 179KB

.b7065
Size: 5KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 486B

.reloc
Size: 512B - Virtual size: 61KB