f574d51213401e81c95cb58805d9b1c2dad984f45117095a28abc2da51436c37

General

Target

f574d51213401e81c95cb58805d9b1c2dad984f45117095a28abc2da51436c37
Size

8.1MB
MD5

53b5f2d11db3a6a7bec6f1c995a713c5
SHA1

97b7479edba736705871dc0eb5f412a617172a35
SHA256

f574d51213401e81c95cb58805d9b1c2dad984f45117095a28abc2da51436c37
SHA512

36a8dc688ba7f757deae010834467c3c45e2a217d7c1309d04d9981efb001bcdb38915a43bfdac014ee9b02ec234f7a623784df27de5e3edc03077c11d1ba1c1
SSDEEP

98304:C8duBMiMM1ZukLdXIHJu077SXm6U3dV4jTrUAy3ZIHpHSAaZn2GlJcTTK1oTnMoT:C8dXOokihf3X4VoaHpHSAcn2Gwren/ID

Score

N/A

Malware Config

Signatures

Files

f574d51213401e81c95cb58805d9b1c2dad984f45117095a28abc2da51436c37
.exe windows x86

0401f1fe2e7ec85ca7b9544c39c4bc0d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ResetEvent
GetCurrentThread
RaiseException
EnterCriticalSection
GetVersionExA
CreateThread
GetModuleHandleA
LoadLibraryW
LocalAlloc
LoadLibraryExW
IsDebuggerPresent
HeapCreate
GetLocaleInfoA
LocalFree
VirtualFree
GetCurrentProcessId
CreateEventW
DeleteCriticalSection
ExitProcess
LoadResource
GetStartupInfoA

user32

LoadIconW
DialogBoxParamW
EqualRect
GetSubMenu
SetWindowLongW
GetActiveWindow
GetSysColor
BeginPaint
MsgWaitForMultipleObjects
LoadStringA
PostMessageW
LoadImageW

gdi32

EndPage
ExtTextOutA
ExtSelectClipRgn
SetStretchBltMode
GetTextAlign
GetObjectW

advapi32

LookupAccountNameW
CryptAcquireContextA
RegEnumKeyA
AdjustTokenPrivileges
SetThreadToken
CryptAcquireContextW
GetSidSubAuthorityCount
RegDeleteValueW
DuplicateTokenEx
RegDeleteValueA
RevertToSelf

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr

crypt32

CertFreeCertificateContext

Sections

tt
Size: 4.4MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

dd
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

ss
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0401f1fe2e7ec85ca7b9544c39c4bc0d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msvcrt

crypt32

Sections

tt Size: 4.4MB - Virtual size: 4.7MB

dd Size: 103KB - Virtual size: 103KB

ss Size: 1024B - Virtual size: 3KB

.rsrc Size: 105KB - Virtual size: 105KB

tt
Size: 4.4MB - Virtual size: 4.7MB

dd
Size: 103KB - Virtual size: 103KB

ss
Size: 1024B - Virtual size: 3KB

.rsrc
Size: 105KB - Virtual size: 105KB