d4d3f5b4676925fe50982f7cc1090c59935588b554128bfac8a0448ed1e76ff4

General

Target

d4d3f5b4676925fe50982f7cc1090c59935588b554128bfac8a0448ed1e76ff4
Size

11KB
MD5

4e937be5c7bd0e3530eab4d07b4d4b05
SHA1

4aa72376105c534218276219f2526b87706ebfef
SHA256

d4d3f5b4676925fe50982f7cc1090c59935588b554128bfac8a0448ed1e76ff4
SHA512

101567e8b8c0f5a8d02af902d6b718091e9e07c688469dfb821fe593c8f4ff9b217018ee6c038545155deb5874e0c9857f4fc93d06fbff9e970c5679c81a2f4f
SSDEEP

192:r0o3zOq2rPim9msd0u7N8yClpjw5u282QANTQKM5oyYPgsxwQb:rNzwim9m1u7Ny/sQ2pQrKGuPBB

Score

1^/10

Malware Config

Signatures

Files

d4d3f5b4676925fe50982f7cc1090c59935588b554128bfac8a0448ed1e76ff4
.exe windows x86

014d898401d7d5a6a7d19f6748c631fc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
SetTimer
DialogBoxParamA
GetDlgItem
SendMessageA

kernel32

FindClose
FindFirstFileW
FindNextFileW
GetCurrentProcess
GetEnvironmentVariableA
GetFileAttributesW
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetTickCount
GlobalAlloc
GlobalFree
CreateFileW
MoveFileW
MultiByteToWideChar
ExitProcess
SetErrorMode
SetFileAttributesW
SetThreadPriority
Sleep
UnmapViewOfFile
WriteFile
CreateFileMappingA
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyA
lstrcpyW
lstrlenA
lstrlenW
CloseHandle
RtlMoveMemory
CreateThread
MapViewOfFile
lstrcatA

shell32

ShellExecuteA

advapi32

LookupPrivilegeValueA
AdjustTokenPrivileges
OpenProcessToken
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
GetUserNameA

comctl32

InitCommonControls

mpr

WNetCloseEnum
WNetOpenEnumA
WNetEnumResourceA

wsock32

WSAStartup
closesocket
connect
recv
send
socket
WSACleanup

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 240B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

014d898401d7d5a6a7d19f6748c631fc

Headers

File Characteristics

Imports

user32

kernel32

shell32

advapi32

comctl32

mpr

wsock32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 2KB

.rsrc Size: 512B - Virtual size: 240B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 512B - Virtual size: 240B