50d6e5b63ed656c1f9e582a00cbcac418c27c58d1ec47667ae1bd034a1551bdc

General

Target

50d6e5b63ed656c1f9e582a00cbcac418c27c58d1ec47667ae1bd034a1551bdc
Size

105KB
MD5

282de9a0fee072f6aec26f84e144754d
SHA1

14856da595fac9bbc765c3103ddfa6691791fd7f
SHA256

50d6e5b63ed656c1f9e582a00cbcac418c27c58d1ec47667ae1bd034a1551bdc
SHA512

9c1db26bee84ef80839cccb9055886d213f14da62f703d2939ddd0c3034c60bc90d44526ce2ffba31607b995d62b458071365a68cf2ac79f43145d27ccad2ab7
SSDEEP

3072:uO9Y/8krIdAG8EI+44C9YkcMxAoQyb9ZmLM9:uO9YQTC9SM+oQW9ZYM

Score

N/A

Malware Config

Signatures

Files

50d6e5b63ed656c1f9e582a00cbcac418c27c58d1ec47667ae1bd034a1551bdc
.exe windows x86

49225e57c2af86c94208ce55623cb9d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcmp
__set_app_type
__p__fmode
exit
signal
_adjust_fdiv
getenv
_exit
__dllonexit
_strnicmp
__getmainargs
_except_handler3
__setusermatherr
_acmdln
_XcptFilter
free
_errno
calloc
__p__commode
_initterm
printf
fclose

kernel32

InterlockedDecrement
LoadLibraryExW
GetProcAddress
GetModuleHandleW
SetHandleCount
VirtualProtectEx
DeleteFileA
SetFileAttributesW

gdi32

ScaleViewportExtEx
GetObjectType
CreatePolygonRgn
GetMapMode
TranslateCharsetInfo
SetPolyFillMode
SetBrushOrgEx
DeleteEnhMetaFile
RectInRegion

advapi32

FreeSid
AddAccessAllowedAce
GetSecurityDescriptorDacl
CryptGenRandom
AdjustTokenPrivileges
RegCreateKeyA
GetLengthSid

user32

DrawIconEx
SetClassLongA

shell32

SHCreateDirectoryExA
ExtractIconA
SHGetSpecialFolderPathA
SHGetDesktopFolder

ole32

RevokeDragDrop
OleGetClipboard
CoGetClassObject
CoUninitialize
CoGetMalloc
CoTaskMemRealloc
OleIsCurrentClipboard
OleDraw

comctl32

InitCommonControlsEx
ImageList_SetBkColor
ImageList_SetIconSize
ImageList_LoadImageW

oleaut32

GetErrorInfo

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49225e57c2af86c94208ce55623cb9d1

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

advapi32

user32

shell32

ole32

comctl32

oleaut32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 40KB - Virtual size: 62KB

.rsrc Size: 59KB - Virtual size: 59KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 40KB - Virtual size: 62KB

.rsrc
Size: 59KB - Virtual size: 59KB