15c4cc61faba3c906886146279e867015832762025215bfae05e0313de970d4c

Sharing

Copy URL Twitter E-mail

General

Target

15c4cc61faba3c906886146279e867015832762025215bfae05e0313de970d4c
Size

180KB
MD5

e136441ae4c606e059be7cdabd5dc9fc
SHA1

94adcb20a5aaf36b9684da369164c673717dd24e
SHA256

15c4cc61faba3c906886146279e867015832762025215bfae05e0313de970d4c
SHA512

aa0a226db149d5ef55381fcbb1a251f97773401370e9a8b77794095403d30b2defd468c4bd1a10637076a2ff252dc3280b3a8705f06548fc0a18d4e1e0b59cde
SSDEEP

3072:p8QFXC1KVaoGAdBjQ9V42+rzCnh6eNMdyTRSR:p8QR+K+AXqD+/ChBqqk

Score

N/A

Malware Config

Signatures

Files

15c4cc61faba3c906886146279e867015832762025215bfae05e0313de970d4c
.exe windows x86

aec4efddec35e32230f6a87dded8b111

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
__set_app_type
free
strlen
fopen
_acmdln
_exit
fputc
strncmp
strcmp
_except_handler3
_adjust_fdiv
__p__fmode
memmove
_initterm
_snprintf
fputs
calloc
strncpy
strchr
__p__commode
_errno
__setusermatherr
_XcptFilter

kernel32

DeleteFileW
GetEnvironmentStrings
GetProcAddress
LCMapStringW
GetWindowsDirectoryA
InterlockedCompareExchange
GetConsoleMode
GetConsoleOutputCP
ReadFile
GetSystemInfo
GetEnvironmentStringsW
LoadLibraryExW
WaitForSingleObject
WriteFile
SetFileAttributesW
GetUserDefaultLangID
GetDiskFreeSpaceA
FreeLibrary
GetStartupInfoA
GlobalReAlloc
WaitForMultipleObjects
lstrlenW
GetVersionExA
GetLocaleInfoA
GetStartupInfoW
GlobalHandle

comctl32

CreatePropertySheetPageA
ImageList_LoadImageW
PropertySheetW
InitCommonControlsEx
InitCommonControls
InitializeFlatSB
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_DragShowNolock
CreatePropertySheetPageW

oleaut32

SafeArrayUnaccessData
SafeArrayPutElement
GetActiveObject
SafeArrayCreate
SafeArrayGetElement
SafeArrayPtrOfIndex

advapi32

GetLengthSid
CryptReleaseContext
SetSecurityDescriptorDacl
RegCreateKeyA
RevertToSelf
CryptCreateHash
OpenServiceW
RegQueryInfoKeyW
RegEnumKeyW
CheckTokenMembership

gdi32

BitBlt
SelectPalette
Polyline
SetViewportOrgEx
EndPage
SetBkColor
CreateEllipticRgn
GetClipBox
IntersectClipRect
RectVisible
SelectClipRgn
GetWindowExtEx

ole32

StringFromGUID2
StringFromIID
OleFlushClipboard
CreateILockBytesOnHGlobal
OleRun
OleUninitialize
CoUninitialize
IsAccelerator
OleInitialize

user32

RemovePropA
FillRect
RedrawWindow
SetMenu
DestroyMenu
EqualRect
GetActiveWindow
DrawEdge
GetFocus
CreatePopupMenu

Sections

.text
Size: 57KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aec4efddec35e32230f6a87dded8b111

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

oleaut32

advapi32

gdi32

ole32

user32

Sections

.text Size: 57KB - Virtual size: 57KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 96KB - Virtual size: 96KB

.text
Size: 57KB - Virtual size: 57KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 96KB - Virtual size: 96KB