d7d360f6ac78b0411b5f50033e5526850c6199df36c9af870fa0f97ee416d8ce

General

Target

d7d360f6ac78b0411b5f50033e5526850c6199df36c9af870fa0f97ee416d8ce
Size

39KB
MD5

56370948811d225493a4f27496d4964f
SHA1

8b5919448d4b60c6158ab5c53975afd020fe6fb4
SHA256

d7d360f6ac78b0411b5f50033e5526850c6199df36c9af870fa0f97ee416d8ce
SHA512

44f041cadb4fd5fb2ad2e23267fe06894d514b525824f981f390351e8558f7de407c7171e798e7fae3fd727b16554167cd64ad22dd2e3cf44f38c22e2dfa3e53
SSDEEP

768:zwslBJcvTC69kDmXRCy0m1SviCtQ55/aeJCE71T70k6BJuDGGzTW:zIC6ymIy0m1KUrEEBwm

Score

N/A

Malware Config

Signatures

Files

d7d360f6ac78b0411b5f50033e5526850c6199df36c9af870fa0f97ee416d8ce
.exe windows x86

f0c0843d0e4ed815f09997432955a1a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
DeleteFileA
DeviceIoControl
DuplicateHandle
ExitProcess
FindFirstFileA
FindNextFileA
GetACP
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetFullPathNameA
GetLastError
GetPrivateProfileSectionNamesA
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetStdHandle
GetSystemTimeAsFileTime
GetThreadLocale
GetThreadTimes
GetTickCount
GetVersionExA
GlobalHandle
GlobalReAlloc
GlobalUnlock
HeapDestroy
InterlockedCompareExchange
InterlockedDecrement
InterlockedIncrement
IsValidCodePage
IsValidLocale
LoadLibraryA
LocalFree
MapViewOfFile
OutputDebugStringA
QueryPerformanceCounter
ResetEvent
SetErrorMode
SetFileAttributesA
SetFilePointer
SetLastError
SetPriorityClass
SetUnhandledExceptionFilter
TlsFree
TlsGetValue
TlsSetValue
UnmapViewOfFile
VirtualAlloc
VirtualQuery
WideCharToMultiByte
WritePrivateProfileStringA
lstrcatA
lstrcmpiA
lstrcpyA
lstrlenA

user32

GetParent
GetWindow
MsgWaitForMultipleObjects
SendDlgItemMessageA
UnregisterClassA

advapi32

AllocateAndInitializeSid
QueryServiceConfig2A
RegOpenKeyA
RegOpenKeyExA
UnlockServiceDatabase

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 1024B - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0c0843d0e4ed815f09997432955a1a6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 28KB - Virtual size: 27KB

.DATA Size: 1024B - Virtual size: 9KB

.data Size: 7KB - Virtual size: 8KB

.idata Size: 2KB - Virtual size: 4KB

.text
Size: 28KB - Virtual size: 27KB

.DATA
Size: 1024B - Virtual size: 9KB

.data
Size: 7KB - Virtual size: 8KB

.idata
Size: 2KB - Virtual size: 4KB