51d3f758289f95fb46c0cdd93a3067bc902a3f690a338a56434efacde15091d4

Sharing

Copy URL Twitter E-mail

General

Target

51d3f758289f95fb46c0cdd93a3067bc902a3f690a338a56434efacde15091d4
Size

168KB
MD5

952539962b6ae0051e6abba52ba883e2
SHA1

bd3fb34ec57c50e1cc992fccf59806bce6c0b9e6
SHA256

51d3f758289f95fb46c0cdd93a3067bc902a3f690a338a56434efacde15091d4
SHA512

e5d478ef1687a90509ccefe4bb7ec9eacf270a901c31ab37131b00b11c3b46f688d15b189356e0d3847a9d75b400ef0eceb52cff606fd3857b9f32e3fb2949db
SSDEEP

3072:d1U+Y4/9pUmBdkkiZFZxVJDyVhmfFj8RvTQ6ilniN2UlH/wDjzizYEcrV2p:dk4efoRvfVNmiYEOK

Score

N/A

Malware Config

Signatures

Files

51d3f758289f95fb46c0cdd93a3067bc902a3f690a338a56434efacde15091d4
.exe windows x86

7e638ad16bc19b4cbb4139f246789c3c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetFilePointer
LocalAlloc
GetStartupInfoA
CopyFileA
GetModuleHandleA
VirtualProtect
GetTempPathW
GetCommandLineW

user32

GetMenu
DrawMenuBar
ReleaseDC
GetSysColor
ReleaseCapture
GetClassNameA
GetDlgItem
GetScrollInfo
LoadStringA

msvcrt

log10
isdigit
_XcptFilter
_unlink
localeconv
remove
__p__commode
_filelengthi64
_adjust_fdiv
_acmdln
floor
__p__fmode
_vsnwprintf
fgetpos
_purecall
__set_app_type
wcstol
exit
abort
_except_handler3
_initterm
__getmainargs
_itoa
__setusermatherr
__lc_codepage
_setjmp3

ole32

CoTaskMemAlloc
CoTaskMemFree
OleDraw
CoCreateInstance
CoReleaseMarshalData
CLSIDFromProgID

advapi32

RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyExW
CloseServiceHandle
GetSecurityDescriptorDacl
DeleteService
AllocateAndInitializeSid
CryptGenRandom

oleaut32

VariantCopy
VariantClear
SysStringLen
CreateErrorInfo
LoadTypeLib
SysAllocStringByteLen
GetErrorInfo
VariantCopyInd
SetErrorInfo
SysReAllocStringLen

comctl32

CreatePropertySheetPageA
ImageList_Read
ImageList_Replace
ImageList_SetDragCursorImage
CreateStatusWindowA
InitializeFlatSB
ImageList_Remove
ImageList_Add
ImageList_AddMasked
ImageList_SetIconSize

shell32

ShellExecuteEx
ExtractIconA
SHGetPathFromIDList
CommandLineToArgvW
SHGetSpecialFolderPathW
SHGetFolderLocation
SHGetFolderPathA
SHAddToRecentDocs
SHGetSpecialFolderPathA
SHAppBarMessage

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7e638ad16bc19b4cbb4139f246789c3c

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

ole32

advapi32

oleaut32

comctl32

shell32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 151KB - Virtual size: 151KB

.data Size: 10KB - Virtual size: 12KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 151KB - Virtual size: 151KB

.data
Size: 10KB - Virtual size: 12KB