fd9c1aa2f3521ab2e48f12cb0a8de96e2117e73224081535bd5128dbe9dfa231

General

Target

fd9c1aa2f3521ab2e48f12cb0a8de96e2117e73224081535bd5128dbe9dfa231
Size

124KB
MD5

c34e03bb28640e3d2a7dba79b6d4728a
SHA1

c816cec9e7fa02893f6bd9eee9e1ce7c12b5a40b
SHA256

fd9c1aa2f3521ab2e48f12cb0a8de96e2117e73224081535bd5128dbe9dfa231
SHA512

95aece6320d6c66e477f0c48f996acd46f46957fe653f837711288640bc6a40dc730f1c53d920a9f34c9a37b68e43a2a1a107e0940b914a9080c95a2b7ba1a56
SSDEEP

3072:YhhIrh72IxDs3uuv4p4lK2jNVEESyHwDPa9zklo:6Kt7/C3urmPEPa79So

Score

N/A

Malware Config

Signatures

Files

fd9c1aa2f3521ab2e48f12cb0a8de96e2117e73224081535bd5128dbe9dfa231
.exe windows x86

7042641b6c6a4106a0804409d743b656

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
GlobalFree
Sleep
FindAtomA
OpenFileMappingA
CreateThread
CopyFileExW
GetComputerNameA
WriteFile
DeleteAtom
CopyFileA
CopyFileExA
DeleteFileA
FindFirstFileA
CreateDirectoryA
ReadConsoleA
GetCommandLineA
GetLastError
GetConsoleMode

advapi32

RegQueryValueA
RegEnumKeyExA
RegEnumKeyA
RegQueryInfoKeyA
RegGetKeySecurity
RegReplaceKeyW
RegOpenKeyExW
RegReplaceKeyA
RegEnumValueW
RegEnumValueA
RegCreateKeyW
RegOpenKeyW
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegCreateKeyExW

comctl32

ImageList_DragShowNolock
ImageList_Copy
ImageList_GetImageRect
ImageList_LoadImage
ImageList_EndDrag
ImageList_DrawEx
InitCommonControls
ImageList_BeginDrag
ImageList_GetDragImage
ImageList_AddIcon
ImageList_Read
ImageList_GetIcon
ImageList_Draw
ImageList_Remove
ImageList_Destroy
ImageList_GetImageInfo
ImageList_Create
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_DrawIndirect

user32

EndDialog
CopyImage
AlignRects
LoadCursorA
AppendMenuW
IsWindow
AppendMenuA
GetMenu
DialogBoxParamA
DrawTextA
GetFocus
GetDC
DialogBoxParamW
GetDlgItem
BlockInput
GetWindowTextA
DrawIcon
CloseWindow

Sections

.text
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 104KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7042641b6c6a4106a0804409d743b656

Headers

File Characteristics

Imports

kernel32

advapi32

comctl32

user32

Sections

.text Size: 8KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 104KB - Virtual size: 181KB

.rsrc Size: 4KB - Virtual size: 1000B

.text
Size: 8KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 104KB - Virtual size: 181KB

.rsrc
Size: 4KB - Virtual size: 1000B