302fefdab4ea40d96a76ef2462a2907c190520743f9e9990f5f9eaea96fad443

General

Target

302fefdab4ea40d96a76ef2462a2907c190520743f9e9990f5f9eaea96fad443
Size

48KB
MD5

458d49d33ac89a264e9883a8cf3256ba
SHA1

324268206d8464e0573589d612860b3485e73d34
SHA256

302fefdab4ea40d96a76ef2462a2907c190520743f9e9990f5f9eaea96fad443
SHA512

95d28565c62e6d03398cf3d5409d2d1751bdd3e89713943db4e66a912d659b1e60dd7cdf3de260532c92eeaa51b78cdbd210c3015412db5e64b36085ffd72614
SSDEEP

384:zKYZkhPW5X0aGT9MS2VnHsEQpQqFBlBml6wyulx3IR2D0XCkwM6doQV+RwlhaKD+:zfqYXdE9MhnMEQSq5mpx3oWOYddo+

Score

1^/10

Malware Config

Signatures

Files

302fefdab4ea40d96a76ef2462a2907c190520743f9e9990f5f9eaea96fad443
.exe windows x86

fc18dfb8ab568cb7c9079984215183c8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
MultiByteToWideChar
GetVersionExA
FlushFileBuffers
Sleep
CreateProcessA
GetModuleFileNameA
SetCurrentDirectoryA
CreateMutexA
GetWindowsDirectoryA
GetPrivateProfileStringA
GetSystemDirectoryA
WaitForSingleObject
CloseHandle
lstrcpyA
WriteFile
HeapFree
TerminateProcess
LCMapStringA
GetCurrentProcess
GetStringTypeA
GetStringTypeW
GetProcAddress
GetOEMCP
lstrlenA
LoadLibraryA
GetACP
GetCPInfo
SetStdHandle
HeapReAlloc
VirtualAlloc
HeapAlloc
LCMapStringW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
SetHandleCount
GetEnvironmentStringsW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
RtlUnwind
SetFilePointer
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree

user32

SendMessageA
FindWindowA
SystemParametersInfoA
SetForegroundWindow

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fc18dfb8ab568cb7c9079984215183c8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 20KB - Virtual size: 19KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 20KB - Virtual size: 19KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 8KB - Virtual size: 8KB