515ba315b638e61d8a10034b31d90fb40e9bac47469988c4ae13d834861f2776

Sharing

Copy URL Twitter E-mail

General

Target

515ba315b638e61d8a10034b31d90fb40e9bac47469988c4ae13d834861f2776
Size

652KB
MD5

1bdec96af86bfaf635cc655e8caebfe0
SHA1

df6cf3b8aefeebc02e46574da29b1b1cd676e5ce
SHA256

515ba315b638e61d8a10034b31d90fb40e9bac47469988c4ae13d834861f2776
SHA512

aa7d0b65492e5df278fb42bb857a74a6c3b1fda0059486b338c94f7910603966419701060afb823cf2e333409252df8380c5fbea17c30d48106116ab1f4b0898
SSDEEP

12288:cfSDXlxNq9D+SsSJUg9Dg+s6o6qU4BxF5Q/qJ37Jd1XgRhEZK:8olxw9iSsSJRJg56mBxF5+qJ3r1XgRSI

Score

N/A

Malware Config

Signatures

Files

515ba315b638e61d8a10034b31d90fb40e9bac47469988c4ae13d834861f2776
.exe windows x86

25ea17c83abcad1925f0bae28fedb6b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindow
GetDC
SendMessageA
GetClientRect
GetParent
UpdateWindow
EnableWindow
PeekMessageA
TranslateMessage
RegisterClassA
CreateWindowExA
FillRect
BeginPaint
DefWindowProcA
GetSystemMetrics
SetWindowLongA
SetWindowTextA
LoadCursorA
GetDesktopWindow
EndDialog
GetKeyState
IsWindowVisible

advapi32

RegQueryValueExA
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegCloseKey

kernel32

GetCurrentProcess
GetConsoleMode
LocalAlloc
FreeEnvironmentStringsW
SetStdHandle
GetCPInfo
GetStringTypeA
HeapReAlloc
DeleteCriticalSection
GetFullPathNameA
LocalFree
LoadResource
FindClose
GetModuleFileNameW
IsDebuggerPresent
HeapAlloc
GetVersionExA
FreeEnvironmentStringsA
HeapDestroy
WaitForSingleObject
GetStdHandle
GetStringTypeW
GetEnvironmentStringsW
GetTickCount
GetCommandLineA
GetCurrentThreadId
GetCurrentProcessId
GetLastError
GetCurrentThread
GetModuleHandleA
ExitProcess
VirtualAlloc
Sleep
VirtualFree
HeapCreate
GetModuleHandleW
lstrcpynA
CloseHandle
ReadFile
MapViewOfFile
RaiseException
HeapSize
WideCharToMultiByte
GetEnvironmentStrings
FileTimeToLocalFileTime
LCMapStringA
GetConsoleCP
LCMapStringW
InterlockedIncrement
CreateFileA
GetFileType
CreateEventA
CreateFileW
FindNextFileA
FindFirstFileA
WaitForMultipleObjects
GetWindowsDirectoryA
DeleteFileA
GetFileSize
LoadLibraryA
FlushFileBuffers
TlsAlloc
QueryPerformanceCounter
GetExitCodeProcess
GetVersionExW
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
SetEndOfFile
SetFilePointer
MultiByteToWideChar
UnhandledExceptionFilter
GetModuleFileNameA

Sections

.text
Size: 612KB - Virtual size: 938KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25ea17c83abcad1925f0bae28fedb6b1

Headers

File Characteristics

Imports

user32

advapi32

kernel32

Sections

.text Size: 612KB - Virtual size: 938KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 612KB - Virtual size: 938KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 18KB - Virtual size: 18KB