b1cdd5d90fa91ae45a8028472365957ee53671912e6c9c30aab7d245aa5bd1e7

General

Target

b1cdd5d90fa91ae45a8028472365957ee53671912e6c9c30aab7d245aa5bd1e7
Size

56KB
MD5

fa007f57d00089c447f23c13a819c8fd
SHA1

0850fcdd47108cd0fe1436712d9b59f00838a157
SHA256

b1cdd5d90fa91ae45a8028472365957ee53671912e6c9c30aab7d245aa5bd1e7
SHA512

bdc0202ad6250425b4f0ecc30a835b28a9ce6896f9ec2fbc59c1f2b3c946cd21cda1d0932f9885f5fe0a4331ba47fdbb1178fa53522176fcdcd634eaa221c826
SSDEEP

1536:XXlLYzkK+FWAJq2XSGSGh1hU7G0iFTl8cg:N0kKBAE2C5Gl8G0iNg

Score

N/A

Malware Config

Signatures

Files

b1cdd5d90fa91ae45a8028472365957ee53671912e6c9c30aab7d245aa5bd1e7
.exe windows x86

744f884db580d535a1920ff19d495ce7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
DeviceIoControl
ExitProcess
ExitThread
FatalAppExitA
FindFirstFileA
GetACP
GetCommandLineA
GetCurrentDirectoryA
GetFileTime
GetLastError
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
IsBadReadPtr
MultiByteToWideChar
RtlUnwind
SetErrorMode
SetEvent
SetLastError
SetUnhandledExceptionFilter
TlsAlloc
UnmapViewOfFile
lstrcpyA
lstrlenA
lstrlenW

msvcrt

srand
__getmainargs
__p__commode
__p__fmode
exit
malloc
sscanf
wcscmp
__set_app_type
_exit
wcslen
_stricmp

user32

DeleteMenu
SetMenuItemInfoA
CheckMenuItem
SetWindowPlacement

winmm

joyGetNumDevs
timeBeginPeriod
joySetCapture
joyGetThreshold
joyGetDevCapsW

ole32

CoCreateInstance
CoFileTimeNow
CreateAntiMoniker

shlwapi

PathFindFileNameA
PathStripPathA
StrToIntA
StrTrimA
PathRenameExtensionA

advapi32

ImpersonateNamedPipeClient
GetTraceLoggerHandle
LookupPrivilegeValueW
CryptSetProviderExA
CryptGetDefaultProviderW
CryptGetDefaultProviderA
ConvertStringSDToSDRootDomainW
LsaSetSystemAccessAccount
QueryServiceLockStatusA
QueryServiceStatusEx
RegEnumKeyExW
ElfOpenBackupEventLogW
RegQueryValueExA

Sections

.text
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

744f884db580d535a1920ff19d495ce7

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

winmm

ole32

shlwapi

advapi32

Sections

.text Size: 42KB - Virtual size: 44KB

.data Size: 11KB - Virtual size: 12KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 42KB - Virtual size: 44KB

.data
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 1024B - Virtual size: 4KB