b9aaab29c51a37cb5e8def1c9a141bd41351ad5b4b414843e1c7d7d972858242

General

Target

b9aaab29c51a37cb5e8def1c9a141bd41351ad5b4b414843e1c7d7d972858242
Size

25KB
MD5

8791d8096052918ae8d93f2ce91870a3
SHA1

065c89f62ed162093751c0e93023c08f62774afb
SHA256

b9aaab29c51a37cb5e8def1c9a141bd41351ad5b4b414843e1c7d7d972858242
SHA512

656be67d5a8b239c1ee80cb53e30e5b6217c57b44c40d273c8264deb49140696384b43f226e384c022045aac9f46ad770cb484ff404ffd072435913db84cc78c
SSDEEP

768:ubUCr9zImQl0kFMgyjFYQHIRq6AkfTdj8w:FCxzImUfB+FzHIRq9en

Score

N/A

Malware Config

Signatures

Files

b9aaab29c51a37cb5e8def1c9a141bd41351ad5b4b414843e1c7d7d972858242
.exe windows x86

fab62d2f114d432edd30fa428eec1784

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DialogBoxIndirectParamA
SetWindowLongA
PeekMessageA
InvalidateRect
GetParent
DefMDIChildProcA
SetCursor
FillRect

kernel32

SetConsoleCtrlHandler
InterlockedDecrement
GetConsoleMode
CompareStringA
HeapSize
OpenProcess
lstrcmpiA
FileTimeToSystemTime
DuplicateHandle
GetThreadContext
FatalAppExitA
VirtualAlloc
CompareStringW

ole32

CoCreateFreeThreadedMarshaler
CoInitialize
OleLockRunning
OleCreateDefaultHandler
OleCreateMenuDescriptor
CoGetCurrentProcess
OleRegEnumVerbs
OleGetClipboard

advapi32

SetKernelObjectSecurity
RegEnumValueA
AddAccessAllowedAce
OpenProcessToken
OpenSCManagerA
CreateProcessAsUserA
CloseServiceHandle
GetLengthSid

msvcrt

_initterm
strcmp
wcsncat
_stat
strcat
__setusermatherr
_beginthreadex

gdi32

RestoreDC
ExtTextOutA
Rectangle
BitBlt
DeleteDC
StartPage
SetMapMode
CreateRectRgnIndirect
GetDeviceCaps

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fab62d2f114d432edd30fa428eec1784

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

ole32

advapi32

msvcrt

gdi32

Sections

.text Size: 20KB - Virtual size: 19KB

.data Size: 2KB - Virtual size: 2KB

.pdata Size: 1024B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 912B

.text
Size: 20KB - Virtual size: 19KB

.data
Size: 2KB - Virtual size: 2KB

.pdata
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 912B