9db44ca10b2f299239bfe9bba505818b9a6fa44502b5c15430275054065e872c

Sharing

Copy URL Twitter E-mail

General

Target

9db44ca10b2f299239bfe9bba505818b9a6fa44502b5c15430275054065e872c
Size

94KB
MD5

2af4742b2eaae66f9b31e9ea7a9a5bac
SHA1

552d05cf593c24bf85dadbdc22f88ea45af20394
SHA256

9db44ca10b2f299239bfe9bba505818b9a6fa44502b5c15430275054065e872c
SHA512

def6fd947b740af33fc9d5fc2bf5362421451c4270530cc98a54e20abe6fc5695b4a8db91d0e062d61bec9e8266d0e7480a2d5cc27169deceadc5c1c2945aab3
SSDEEP

1536:5c9IQtklVVd67dahizuEtGM6lg8Mr6aL37sBen/bxgUBBBjxMzQLiaH+XThDekka:eb0d6gizI5+TH37w0jGUBjjx+uixdekr

Score

N/A

Malware Config

Signatures

Files

9db44ca10b2f299239bfe9bba505818b9a6fa44502b5c15430275054065e872c
.exe windows x86

22bcde5d7734a2bbaa5bf7a42dd6f1ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
__set_app_type
_initterm
_exit
fprintf
wcslen
free
getenv
sprintf
_except_handler3
_adjust_fdiv
calloc
_write
fread
__getmainargs
memcpy
_acmdln
memmove
__setusermatherr
__p__fmode
_stricmp
_XcptFilter
realloc
__p__commode
strlen

kernel32

WriteFile
SetFileAttributesA
GetStringTypeExA
GetModuleHandleW
GetSystemTime
GetProcAddress
RtlUnwind
InterlockedDecrement
LoadLibraryExW
lstrcmpiA
FreeLibrary
lstrcmpA
GetStdHandle
GetStartupInfoA
ReadFile
GetCommandLineA
GetUserDefaultLangID

ole32

CoRegisterMessageFilter
CoUninitialize
OleRun
IsEqualGUID
OleGetClipboard
RevokeDragDrop
CoInitialize
StgOpenStorageOnILockBytes
CreateItemMoniker
PropVariantClear
OleIsCurrentClipboard
StgOpenStorage
CoInitializeSecurity
StgCreateDocfileOnILockBytes
CLSIDFromProgID

oleaut32

SysAllocStringLen
LoadTypeLib
CreateErrorInfo
VariantCopy
SafeArrayGetUBound
SafeArrayGetElement
SysStringLen
VariantClear
SysAllocStringByteLen
SafeArrayUnaccessData
GetErrorInfo

user32

ShowOwnedPopups
RegisterClassA
IsChild
ScrollWindow
GetParent
SetClipboardData
EnableMenuItem
OemToCharA
GetSysColor
BeginPaint
SetCapture

advapi32

IsValidSid
OpenServiceA
AllocateAndInitializeSid
RegQueryValueA
RegCreateKeyA
OpenServiceW
GetLengthSid
InitiateSystemShutdownA
SetSecurityDescriptorDacl
OpenSCManagerA
LookupPrivilegeValueA
CryptReleaseContext

gdi32

ExtCreatePen
EnumFontFamiliesW
GetBrushOrgEx
GetTextAlign
GetWindowExtEx
SetBkColor
FillPath
OffsetRgn
GetTextExtentPointA

comctl32

ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Add
InitializeFlatSB
ImageList_GetIcon
CreatePropertySheetPageW
CreatePropertySheetPageA
PropertySheetA
ImageList_ReplaceIcon

Sections

.text
Size: 53KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22bcde5d7734a2bbaa5bf7a42dd6f1ef

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

oleaut32

user32

advapi32

gdi32

comctl32

Sections

.text Size: 53KB - Virtual size: 52KB

.data Size: 24KB - Virtual size: 23KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 53KB - Virtual size: 52KB

.data
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 16KB - Virtual size: 15KB