9a495c5604822822c60da5c512b8fc2871518ac037b0a8c2691cfc94e5d0e1a8

General

Target

9a495c5604822822c60da5c512b8fc2871518ac037b0a8c2691cfc94e5d0e1a8
Size

150KB
MD5

ce0e1efd85e94b3aa0f4b2983309eae2
SHA1

27a210bbe5989f9e27de7a5e49ade271f94558c6
SHA256

9a495c5604822822c60da5c512b8fc2871518ac037b0a8c2691cfc94e5d0e1a8
SHA512

a5974374dca833872ad250f57e74d7c110a965db9974003e2bf27724f41ae61054677b1c80e7ecd7feb6a580a55d57dbecf9850e48f3d2e08fe27260114448c4
SSDEEP

3072:MkDvRa7EPwkoJIApy33Rh7ApNSzbRTZxyFrKZZTCv3l:TR8keIAp63DAnSfRTZMFr8ZwV

Score

N/A

Malware Config

Signatures

Files

9a495c5604822822c60da5c512b8fc2871518ac037b0a8c2691cfc94e5d0e1a8
.exe windows x86

d50c3c92dc96b73bcb1239fb0aae3c63

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA
LookupPrivilegeValueA
OpenProcessToken

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

GetShortPathNameA
GetFullPathNameA
SetFileAttributesA
LocalAlloc
lstrcpyA
RemoveDirectoryA
GetUserDefaultUILanguage
lstrcpynA
ExitProcess
GetModuleFileNameA
GetFileSize
GetModuleHandleA
SearchPathA
lstrlenA
CopyFileA
lstrcatA
MoveFileA
FlushConsoleInputBuffer
WaitCommEvent
ClearCommError
GetCurrentConsoleFont
WaitForMultipleObjects
SetLocalTime
GetConsoleCP
LocalReAlloc
QueryPerformanceCounter
WaitForSingleObjectEx
ExitProcess
GetCurrentThreadId
GetSystemTimeAsFileTime
CreateTimerQueueTimer
GlobalMemoryStatus
CreateTimerQueue
SetThreadAffinityMask
SetConsolePalette
GetModuleHandleA
SetEnvironmentVariableW
lstrcatW
IsDBCSLeadByteEx

user32

CreateWindowExA
SetWindowTextA
ShowWindow
SendDlgItemMessageA
GetDlgItemTextA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 133KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d50c3c92dc96b73bcb1239fb0aae3c63

Headers

File Characteristics

Imports

advapi32

version

kernel32

user32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 7KB - Virtual size: 10KB

.rsrc Size: 2KB - Virtual size: 1KB

.rdata Size: 133KB - Virtual size: 143KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 7KB - Virtual size: 10KB

.rsrc
Size: 2KB - Virtual size: 1KB

.rdata
Size: 133KB - Virtual size: 143KB