e7a42c6f51423c6f01461c65e416727c7db1c9a5836e4792bc8748f7738f8afa

General

Target

e7a42c6f51423c6f01461c65e416727c7db1c9a5836e4792bc8748f7738f8afa
Size

15KB
MD5

17e88cfdcc4634714bcdb493a526f56b
SHA1

3880c74e562407908073ab2b880e644968b42389
SHA256

e7a42c6f51423c6f01461c65e416727c7db1c9a5836e4792bc8748f7738f8afa
SHA512

7f9142a90b368ce36fea4fe0cd880112d4d0720f53a0e23ca75c1451c8eeccff2cf644e0b4c85da7825deeda1ebc06511c86bd21f383cf36969ea23c33f75bbc
SSDEEP

384:3lJIvG4t8JCRW+29cuVCr394sQ7IG2TIW5N89p5BM:VRNak4794nIGhh75BM

Score

N/A

Malware Config

Signatures

Files

e7a42c6f51423c6f01461c65e416727c7db1c9a5836e4792bc8748f7738f8afa
.exe windows x86

09fe2a69c1e1d0946d315523f6732142

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowTextW
GetMessageA
GetClassNameA
ToUnicodeEx
UnhookWindowsHookEx
GetWindowThreadProcessId
ToAsciiEx
SetWindowsHookExA
GetWindowTextA
GetForegroundWindow
GetKeyNameTextA
GetKeyboardLayout
GetKeyState
GetKeyboardState

kernel32

HeapAlloc
LocalAlloc
LocalFree
GetModuleFileNameA
GetModuleHandleA
lstrcatA
WriteFile
lstrlenA
UnmapViewOfFile
CloseHandle
CompareStringA
CreateFileA
CreateFileMappingA
CreateMutexA
DeleteFileA
ExitProcess
FlushFileBuffers
GetComputerNameA
GetDateFormatA
GetFileSize
GetLastError
GetLocalTime
SetFilePointer
WideCharToMultiByte
GetProcAddress
GetProcessHeap
GetSystemDirectoryA
GetTimeFormatA
GetVersionExA
HeapFree
LoadLibraryA
MapViewOfFile
MoveFileA

wininet

FindNextUrlCacheEntryA
DeleteUrlCacheEntryA
FindCloseUrlCache
FindFirstUrlCacheEntryA

wsock32

gethostbyname
send
inet_ntoa
recv
gethostbyaddr
socket
connect
closesocket
WSACleanup
htons
inet_addr

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey
GetUserNameA

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

09fe2a69c1e1d0946d315523f6732142

Headers

File Characteristics

Imports

user32

kernel32

wininet

wsock32

advapi32

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 5KB - Virtual size: 5KB

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 5KB - Virtual size: 5KB