f7a004444683ddf3708cf7eabe0583b7bbb5d60bb904fb00035646997f65cca5

General

Target

f7a004444683ddf3708cf7eabe0583b7bbb5d60bb904fb00035646997f65cca5
Size

154KB
MD5

793719bddcbb4112cfe6d1729786caef
SHA1

c058d608452fe1ec27a2d69f1c57186419308d1f
SHA256

f7a004444683ddf3708cf7eabe0583b7bbb5d60bb904fb00035646997f65cca5
SHA512

60b727ca89f6c71f36d7423cd1812e990af021bdcc317ec7b1a5a703b8e0a0f4fb74d6d2d27c17eb023257b38aaf2497d32ff488ec78c3f37052f8149c3b25c7
SSDEEP

3072:A1lFt3jmQNy/6l/uKiG9OHw2paYhx7r6yA:A1lm5/0jbQHWYhxq

Score

N/A

Malware Config

Signatures

Files

f7a004444683ddf3708cf7eabe0583b7bbb5d60bb904fb00035646997f65cca5
.exe windows x86

fb18a0e1a72d4886f0311bc4b160bd4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
MulDiv
GetVersion
WideCharToMultiByte
FindClose
GetThreadLocale
GetSystemDefaultLangID
ReadFile
HeapDestroy
GetCurrentProcessId
SetLastError
GetStringTypeA
lstrcpynA
GetModuleHandleA
ResetEvent
lstrcmpiA
GetProcAddress
SizeofResource
lstrcpyA
GetOEMCP
EnterCriticalSection
MoveFileExA
FreeLibrary
GetModuleFileNameA
GetCurrentProcess
lstrcatA
GetFileType
Sleep
GetLocaleInfoA
LoadResource
FormatMessageA
MoveFileA
GetCurrentThreadId
VirtualFree
GetDateFormatA
FindResourceA
GetCurrentThread
CreateFileA
GlobalAlloc
CompareStringA
GetCommandLineA
ExitProcess
HeapAlloc
DeleteCriticalSection
GetProcessHeap
GetLocalTime
GetCPInfo
InitializeCriticalSection
VirtualAlloc
LoadLibraryA
lstrlenA
CreateThread
HeapFree
GetDiskFreeSpaceA
SetHandleCount

gdi32

SaveDC
GetDIBColorTable
CreateBitmap
CreateDIBSection

user32

GetPropA
TrackPopupMenu
GetClientRect
GetDC
CharNextA
FrameRect
GetIconInfo
GetMenuStringA
CreateMenu
SetWindowTextA
GetSysColor
EnableMenuItem
GetKeyNameTextA
CreateIcon
GetClassLongA
EnumWindows
BeginDeferWindowPos
GetCursor
DrawTextA
EnumChildWindows
GetClipboardData
ShowWindow

Sections

CODE
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 133KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fb18a0e1a72d4886f0311bc4b160bd4d

Headers

File Characteristics

Imports

kernel32

gdi32

user32

Sections

CODE Size: 12KB - Virtual size: 12KB

.data Size: 3KB - Virtual size: 2KB

.edata Size: 133KB - Virtual size: 232KB

BSS Size: 4KB - Virtual size: 3KB

CODE
Size: 12KB - Virtual size: 12KB

.data
Size: 3KB - Virtual size: 2KB

.edata
Size: 133KB - Virtual size: 232KB

BSS
Size: 4KB - Virtual size: 3KB