7d1366a8d2ea5e705a465e588807d3b257641065d41f69960098725aa3b2ee48

Sharing

Copy URL Twitter E-mail

General

Target

7d1366a8d2ea5e705a465e588807d3b257641065d41f69960098725aa3b2ee48
Size

125KB
MD5

259f1db939284c1188f83e8fcbe67796
SHA1

51fa0e669f63ce22a009a638a50a76470f468ef1
SHA256

7d1366a8d2ea5e705a465e588807d3b257641065d41f69960098725aa3b2ee48
SHA512

bb5e2995f5340f5bdf6e267129a887936062c65f990b8d7c0707c7b96be12946bab79028bd6aa9d81508248d2929917b062922c9feec5479e136bc81020c78d2
SSDEEP

3072:JJgYLKB7UYkyGVL8Jux2ghP2mo5kdMobS/BpyqCr/6h28zRy0:JSNkyoQc2ghOmo2dMobW3H281y

Score

N/A

Malware Config

Signatures

Files

7d1366a8d2ea5e705a465e588807d3b257641065d41f69960098725aa3b2ee48
.exe windows x86

06558219deb42e2146342775b4724772

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CreateProcessA
FlushFileBuffers
GetLastError
GetTickCount
SetFileTime
FreeEnvironmentStringsW
MulDiv
GetModuleHandleA
SetCurrentDirectoryA
GlobalLock
GetFileType
GetStartupInfoA
GetLocaleInfoA
WaitForSingleObject
VirtualProtect
GetStringTypeA
GetVersionExW
GetTimeZoneInformation
GetSystemDirectoryA

msvcrt

__initenv
__p__fmode
fputc
__setusermatherr
_controlfp
__getmainargs
__set_app_type
fwrite
wcscat
_acmdln
_initterm
atol
log
_adjust_fdiv
__p__commode
_XcptFilter
exit
_lock
signal
_fdopen
_except_handler3

gdi32

FillPath
CreateRoundRectRgn
GetRgnBox
SetBkColor
SetMapperFlags
SetStretchBltMode
DPtoLP
GetTextExtentExPointW
GetNearestPaletteIndex

user32

GetSubMenu
WaitMessage
SetForegroundWindow
GetPropA
IntersectRect
CreateMenu
GetClientRect

version

VerFindFileW
GetFileVersionInfoA
GetFileVersionInfoSizeW

ole32

OleSetMenuDescriptor
OleRun
CoTaskMemRealloc
RegisterDragDrop
OleIsCurrentClipboard
IsAccelerator
StringFromCLSID
StringFromIID
OleGetClipboard
CoSetProxyBlanket
CoGetInterfaceAndReleaseStream
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StringFromGUID2

comctl32

ImageList_DragEnter
ImageList_SetIconSize
ImageList_ReplaceIcon
ImageList_SetImageCount
ImageList_SetOverlayImage
CreatePropertySheetPageW
ImageList_Remove
ImageList_AddMasked
ImageList_SetBkColor
ImageList_Create

oleaut32

CreateErrorInfo
SysReAllocStringLen
VariantClear
GetErrorInfo
SafeArrayGetElement
SysStringLen
SysAllocStringByteLen

advapi32

OpenServiceA
LookupPrivilegeValueW
CryptHashData
RegDeleteValueA
CryptDestroyHash
SetSecurityDescriptorDacl
RegCreateKeyExW
OpenSCManagerW
SetSecurityDescriptorOwner

shell32

SHGetFileInfoA
SHGetFileInfo
CommandLineToArgvW
ExtractIconA
SHFileOperationW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06558219deb42e2146342775b4724772

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

version

ole32

comctl32

oleaut32

advapi32

shell32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 17KB - Virtual size: 38KB

.rsrc Size: 89KB - Virtual size: 88KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 17KB - Virtual size: 38KB

.rsrc
Size: 89KB - Virtual size: 88KB