9bd8d80ef062fc32980de8b7bdbe1e4912ff02d1dbb494e09cb8c050b87d9b03

Sharing

Copy URL Twitter E-mail

General

Target

9bd8d80ef062fc32980de8b7bdbe1e4912ff02d1dbb494e09cb8c050b87d9b03
Size

137KB
MD5

3593f3eaf991583a65ef7f23aa55cef1
SHA1

63965ac1063e3fbb5b1c844426789fdbc4f3534a
SHA256

9bd8d80ef062fc32980de8b7bdbe1e4912ff02d1dbb494e09cb8c050b87d9b03
SHA512

dfe000d208796a2bbed46fa9b56533e5fd1755d976ddae08e160c8b5906df76f5487230a859dc310b7881fb87a78fb2e9a99b3631dad0db6b5da9eca2ef4caeb
SSDEEP

3072:xvfGMYphbwK1ixnT268tSKoKsnSa1w6K8ae0JTsGBPNb6rj3SYI5KoV7H//Ml:xda9tjo1L1BLv0JQGBVUjCYINV7H

Score

N/A

Malware Config

Signatures

Files

9bd8d80ef062fc32980de8b7bdbe1e4912ff02d1dbb494e09cb8c050b87d9b03
.exe windows x86

9ef3153d5c25de3efc39d3f22d8d7e52

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_acmdln
clock
__set_app_type
__p__commode
_XcptFilter
__p__fmode
_wcslwr
fgetpos
wcstol
exit
bsearch
__setusermatherr
__getmainargs
_adjust_fdiv
_controlfp
longjmp
log10
wcsncpy
_except_handler3
_initterm
abort
wctomb
_ismbblead

kernel32

GetTickCount
GetTimeZoneInformation
GetLocalTime
GetVersion
GetModuleHandleA
InterlockedCompareExchange
GetEnvironmentStringsW
GetTempPathW
SetFileAttributesW
FormatMessageA
GetCurrentDirectoryA
GetStartupInfoA
VirtualProtect

gdi32

GetTextExtentExPointW
GetTextColor
CreateCompatibleBitmap
CreateRoundRectRgn
CreateFontW
SetWindowExtEx
RealizePalette
CreateEnhMetaFileA
GetMapMode

advapi32

RegOpenKeyA
InitializeAcl
RegCreateKeyExW
GetTokenInformation
DeleteService
GetUserNameA
GetLengthSid
CryptHashData
CheckTokenMembership

version

GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerInstallFileW
VerQueryValueA
GetFileVersionInfoW
VerInstallFileA
GetFileVersionInfoA
VerFindFileW

comctl32

DestroyPropertySheetPage
ImageList_GetImageCount
ImageList_Draw
InitCommonControls
CreatePropertySheetPageA
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_GetImageInfo

user32

GetScrollPos
IsIconic
FillRect
GetWindowLongA
PostQuitMessage
SendDlgItemMessageA
GetWindowRect
DialogBoxParamA

oleaut32

SysStringByteLen
GetErrorInfo
VariantCopyInd
SysAllocStringByteLen
VariantCopy
SafeArrayPtrOfIndex
CreateErrorInfo
SafeArrayPutElement
SysAllocStringLen
VariantClear

ole32

CoTaskMemAlloc
OleDraw
IsAccelerator
ProgIDFromCLSID
StgOpenStorageOnILockBytes
CoCreateInstance
CoInitializeEx
RevokeDragDrop
IsEqualGUID
StgOpenStorage
StringFromGUID2
OleInitialize

shell32

DragQueryFileW
SHGetFolderPathA
SHGetPathFromIDListA
SHFileOperationA

Sections

.text
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9ef3153d5c25de3efc39d3f22d8d7e52

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

advapi32

version

comctl32

user32

oleaut32

ole32

shell32

Sections

.text Size: 19KB - Virtual size: 19KB

.data Size: 17KB - Virtual size: 40KB

.rsrc Size: 99KB - Virtual size: 168KB

.text
Size: 19KB - Virtual size: 19KB

.data
Size: 17KB - Virtual size: 40KB

.rsrc
Size: 99KB - Virtual size: 168KB