fc77959396057a47f06deebf061c7c914f6dc866653b4a8e40694ff6560c51c6

General

Target

fc77959396057a47f06deebf061c7c914f6dc866653b4a8e40694ff6560c51c6
Size

40KB
MD5

5c0ca16a0967478c4b60ce95db800c72
SHA1

4b5b495d3397b5087912329842a119e7db97aaec
SHA256

fc77959396057a47f06deebf061c7c914f6dc866653b4a8e40694ff6560c51c6
SHA512

1fa7fbb70bb17b07acd87079daeb4a75672465954a86e5e626dfc8f0733342e05b37469bb826208583cc1e7d05820d3906cbc931cd315ccf9cc25d0e9e10a2f8
SSDEEP

768:rq+fQMxprcHz0ljVjonGwjylG6Uv+6o/oE:rq6QMxNDljVjonGjl3WoAE

Score

1^/10

Malware Config

Signatures

Files

fc77959396057a47f06deebf061c7c914f6dc866653b4a8e40694ff6560c51c6
.exe windows x86

1bed972bd13522bcd998ab94f6ff8a47

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteKeyA
SHSetValueA
SHGetValueA
SHDeleteValueA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA

kernel32

LCMapStringA
LCMapStringW
GetStringTypeA
TerminateProcess
MultiByteToWideChar
WritePrivateProfileStringA
lstrcpyA
lstrcmpiA
GetVersionExA
GetPrivateProfileStringA
GetSystemDirectoryA
DeleteFileA
LoadLibraryA
GetProcAddress
GetOEMCP
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
RaiseException
HeapAlloc
HeapReAlloc
GetStringTypeW
GetCurrentProcess
HeapSize
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP

user32

MessageBoxA
ExitWindowsEx

shell32

SHGetSpecialFolderPathA

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1bed972bd13522bcd998ab94f6ff8a47

Headers

File Characteristics

Imports

shlwapi

advapi32

kernel32

user32

shell32

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 72KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 72KB