a210d062dd9958f186990bdcfb7bf94c0b9db1ac3bc556050bd2e6000d5e8581

General

Target

a210d062dd9958f186990bdcfb7bf94c0b9db1ac3bc556050bd2e6000d5e8581
Size

76KB
MD5

140b4abb74f9c5befbed76cc0b1da468
SHA1

25ff8ca34fd57270b72e7e985817bfddb5041d18
SHA256

a210d062dd9958f186990bdcfb7bf94c0b9db1ac3bc556050bd2e6000d5e8581
SHA512

cb4f617481b548f7850e702046bf95634f3fa267abd43309bf60d0a0903ec819da95e564af6422936e802237832fc4f312cf98fa3e21a0bf2667d928082bee75
SSDEEP

1536:y+vLspLo7xb4L9DsJkeM122YvIh92Ywh2+a2wUoZA:fsp+b4WJkeM1kIeaN5A

Score

N/A

Malware Config

Signatures

Files

a210d062dd9958f186990bdcfb7bf94c0b9db1ac3bc556050bd2e6000d5e8581
.exe windows x86

3611997e757475d08cac724c00f11adb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateICW
CreateBitmapIndirect
Arc
GetCharWidthA
GetRgnBox
SetROP2
SetRectRgn
SelectObject
TextOutA
CreateDIBSection
SetBkMode
BeginPath
EndDoc
GetTextExtentPoint32W
PlayMetaFile
Pie
Ellipse
RestoreDC
CreateFontW
GetEnhMetaFileBits
SetDIBits
GetMapMode
StartDocA
BitBlt
SetViewportExtEx
GetLayout
CreateBitmap
CreateDIBitmap
SetTextAlign
GetPaletteEntries
GetViewportExtEx

kernel32

GetFileAttributesW
UnmapViewOfFile
GetCurrentThreadId
GetSystemTime
GetConsoleCP
GetEnvironmentVariableA
GetModuleHandleA
SetThreadPriority
ExitProcess
GetStdHandle
VirtualAlloc
CompareStringW
FindResourceW
CreateFileMappingA
GetFileAttributesA
GetSystemInfo
FormatMessageA
GetModuleFileNameA

msvcrt

__setusermatherr
sscanf
wcsstr
_amsg_exit
malloc
atol
_splitpath
_wfsopen
_ltow
wcstoul
memmove
_stricmp
__p__fmode
wcscpy
fflush
_endthreadex
exit
_wsplitpath

advapi32

EqualSid
RegDeleteValueA
AllocateAndInitializeSid
RegQueryInfoKeyA
RegCloseKey

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

edata
Size: 11KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: 10KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3611997e757475d08cac724c00f11adb

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

advapi32

version

Sections

.text Size: 35KB - Virtual size: 35KB

edata Size: 2KB - Virtual size: 2KB

edata Size: 11KB - Virtual size: 80KB

.ndata Size: 10KB - Virtual size: 40KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 35KB - Virtual size: 35KB

edata
Size: 2KB - Virtual size: 2KB

edata
Size: 11KB - Virtual size: 80KB

.ndata
Size: 10KB - Virtual size: 40KB

.rsrc
Size: 17KB - Virtual size: 17KB