90dd546708c2342e1c7eb81347c3c7d1fe68752e0e30dcf51cad40d7574fbd65

Sharing

Copy URL

Twitter E-mail

General

Target

90dd546708c2342e1c7eb81347c3c7d1fe68752e0e30dcf51cad40d7574fbd65
Size

936KB
MD5

9abb1ee0d9227a3fc4bb774375719d2a
SHA1

9645568d6637e9ab0657e633bfb50a7b1f28ff10
SHA256

90dd546708c2342e1c7eb81347c3c7d1fe68752e0e30dcf51cad40d7574fbd65
SHA512

ed72278676256dbfb468ac610da2e2f7725cd7d51b2063267de11253f646e9622b00d711a67a50348668d375d4004de9d4fec3a2ccba67fb921de81918789ba2
SSDEEP

24576:EcjmZzvtcl2ZuvI89J4FLBObBQkhJVlROlyPx7MU66I:N0ZubbGObKk30Cx5g

Score

N/A

Malware Config

Signatures

Files

90dd546708c2342e1c7eb81347c3c7d1fe68752e0e30dcf51cad40d7574fbd65
.exe windows x86

35e4d19d605e4a20e1a11ad3eebc2dd6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceW

user32

GetDlgItem

comdlg32

GetOpenFileNameW

advapi32

RegCreateKeyA

msvcp140

?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z

vcruntime140

_except_handler4_common

api-ms-win-crt-string-l1-1-0

toupper

api-ms-win-crt-runtime-l1-1-0

terminate

api-ms-win-crt-utility-l1-1-0

srand

api-ms-win-crt-time-l1-1-0

_time64

api-ms-win-crt-heap-l1-1-0

_set_new_mode

api-ms-win-crt-convert-l1-1-0

atoi

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

msvcrt

strncpy

iphlpapi

GetInterfaceInfo

psapi

GetMappedFileNameW

shell32

SHGetFolderPathW

Sections

.text
Size: 20KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 823KB - Virtual size: 824KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 86KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35e4d19d605e4a20e1a11ad3eebc2dd6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

msvcp140

vcruntime140

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

msvcrt

iphlpapi

psapi

shell32

Sections

.text Size: 20KB - Virtual size: 132KB

.sedata Size: 823KB - Virtual size: 824KB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 86KB - Virtual size: 88KB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 20KB - Virtual size: 132KB

.sedata
Size: 823KB - Virtual size: 824KB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 86KB - Virtual size: 88KB

.sedata
Size: 4KB - Virtual size: 4KB