2b26baeb7ca76acc1a5983a76efe63fc5a78c23c2f3117b894c6618c8ca87301

General

Target

2b26baeb7ca76acc1a5983a76efe63fc5a78c23c2f3117b894c6618c8ca87301
Size

36KB
MD5

524ed1112ff9e2b8e7757d33cef43590
SHA1

cadfe4b7d0af9016a922d0aea11188a48dc8e42a
SHA256

2b26baeb7ca76acc1a5983a76efe63fc5a78c23c2f3117b894c6618c8ca87301
SHA512

1c3f6ac361c580df9ffb980fe5923b0a5b48ce6fce1de352487e8a0e0f7aead8846b6b9234908a1d23c4c86c7447bcf4aed46e041cd876cc9cf25f721d396068
SSDEEP

384:dlnbW7TaYSRm8Gf/bSmlZb7sYZYSKF7Z8yUKP8+rFk/o5iKqMS:dl2aYx8GfDfjZYSbMP8+Booq

Score

N/A

Malware Config

Signatures

Files

2b26baeb7ca76acc1a5983a76efe63fc5a78c23c2f3117b894c6618c8ca87301
.exe windows x86

988a9887f6fad64f03cda3d0938e1a26

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

keydll

?Stop@@YGXXZ
?Start@@YGHXZ

kernel32

MultiByteToWideChar
SetStdHandle
LoadLibraryA
GetProcAddress
GetOEMCP
GetACP
GetCPInfo
SetFilePointer
GetLastError
LCMapStringA
HeapReAlloc
VirtualAlloc
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
LCMapStringW
GetStringTypeA
GetModuleFileNameA
GetStringTypeW
FlushFileBuffers
GetCommandLineA
GetStdHandle
SetHandleCount
GetModuleHandleA
GetStartupInfoA
CloseHandle
GetVersion
ExitProcess
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW

user32

GetDlgItem
SendMessageA
EndDialog
DefWindowProcA
DestroyWindow
DialogBoxParamA
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA

gdi32

SetTextColor
TextOutA
SetBkColor

advapi32

RegOpenKeyExA
RegSetValueExA
RegQueryValueExA

shell32

ShellExecuteA

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

988a9887f6fad64f03cda3d0938e1a26

Headers

File Characteristics

Imports

keydll

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 2KB