ba712eb0419514cc516531490181cc3ea24b5b793fe1ecf90ebdc5e54e951c7e

Sharing

Copy URL Twitter E-mail

General

Target

ba712eb0419514cc516531490181cc3ea24b5b793fe1ecf90ebdc5e54e951c7e
Size

132KB
MD5

0d4c7ce308161b7a5eea3ad251aa882f
SHA1

4989ed195291741b57b13cb2b243e8ee79d268e2
SHA256

ba712eb0419514cc516531490181cc3ea24b5b793fe1ecf90ebdc5e54e951c7e
SHA512

5508aef00197d75a75644c607e5f2a5583da760c7facf732ea292a8628b0617e6ca83a36334fb643cbf573a305f65a18fe6a46ebe38e8b0a5076e36a20702da2
SSDEEP

3072:Iv9OY1gNygPFIeibyoaU+FLp0IEOnDt9TOKSEEp9g:oO2eAaBF9EOnDt9L5i2

Score

N/A

Malware Config

Signatures

Files

ba712eb0419514cc516531490181cc3ea24b5b793fe1ecf90ebdc5e54e951c7e
.exe windows x86

2d00d4cf971f39022e388ed30250bc8a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
GetModuleHandleA
VirtualProtect
SetHandleCount
GetACP
GetLocaleInfoW
GetLocaleInfoA
DuplicateHandle
FlushFileBuffers
LCMapStringW

msvcrt

_adjust_fdiv
_fstat
_controlfp
_XcptFilter
__p__fmode
fread
_acmdln
wcsrchr
strncmp
isspace
puts
_except_handler3
strtol
__p__commode
_initterm
_isctype
log10
exit
wcsncpy
_dup2
__getmainargs
__set_app_type
__setusermatherr

advapi32

InitiateSystemShutdownA
RegCreateKeyA
RegQueryInfoKeyA
OpenThreadToken
RegOpenKeyExW
CryptReleaseContext
CryptDestroyHash
OpenProcessToken
RegEnumKeyExA
RegEnumKeyExW
OpenServiceA
RegDeleteValueA
GetUserNameA

oleaut32

SysAllocStringLen
SafeArrayGetElement
SafeArrayCreate
SafeArrayPtrOfIndex
SysStringLen
SafeArrayUnaccessData
SafeArrayRedim

shell32

SHAppBarMessage
Shell_NotifyIconA
ExtractIconExW
SHFileOperationA
DragQueryFileA
ShellExecuteExW
SHGetFolderPathW
SHCreateDirectoryExA
ExtractIconA
DragFinish
SHCreateDirectoryExW
SHGetFolderPathA
SHGetFileInfoA

gdi32

GetBkColor
GetStockObject
EnumEnhMetaFile
GetClipRgn
SelectObject
SetDIBitsToDevice
GetBkMode
CreateCompatibleBitmap
CreateFontW
DPtoLP
SetWinMetaFileBits
UnrealizeObject

user32

SetMenu
GetCursorPos
SetClipboardData
ClientToScreen
InsertMenuA
RemoveMenu
GetMessageA
CharLowerA
GetDC
DrawMenuBar
DestroyMenu

comctl32

ImageList_SetIconSize
ImageList_Add
ImageList_LoadImageA
ImageList_DragShowNolock
ImageList_GetImageCount
ImageList_SetDragCursorImage
CreatePropertySheetPageW
DestroyPropertySheetPage
ImageList_Read

version

GetFileVersionInfoSizeA
VerInstallFileW
VerQueryValueW
GetFileVersionInfoSizeW

ole32

CreateItemMoniker
ProgIDFromCLSID
IsEqualGUID
RegisterDragDrop
CoDisconnectObject

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2d00d4cf971f39022e388ed30250bc8a

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

oleaut32

shell32

gdi32

user32

comctl32

version

ole32

Sections

.text Size: 17KB - Virtual size: 17KB

.data Size: 17KB - Virtual size: 40KB

.rsrc Size: 96KB - Virtual size: 164KB

.text
Size: 17KB - Virtual size: 17KB

.data
Size: 17KB - Virtual size: 40KB

.rsrc
Size: 96KB - Virtual size: 164KB