c185fb05ae2ceb966e6b94fc8c20cdbceeddc075966dde5eb7c97d03c6993cd6

Sharing

Copy URL Twitter E-mail

General

Target

c185fb05ae2ceb966e6b94fc8c20cdbceeddc075966dde5eb7c97d03c6993cd6
Size

252KB
MD5

75f1c879c6c3d95d2a6e3484d2e4a0b9
SHA1

a1a2699498fff5798f2575a5b9242e05a7e440c4
SHA256

c185fb05ae2ceb966e6b94fc8c20cdbceeddc075966dde5eb7c97d03c6993cd6
SHA512

294db9d5b670a7c32fd979df9c6ab7f78a5064db5eceda802e61cab4765bde3c04e7b797bf851ff5b06f803efb324a7c9584eb0684ebb0e2c5099fbd25f4fd52
SSDEEP

6144:ziXAZyg8igeWihfJEALlcPm8d+rp9yhDw5FDwmOZS:ziAyg8igeLcALlcn+19yhDw59wz

Score

N/A

Malware Config

Signatures

Files

c185fb05ae2ceb966e6b94fc8c20cdbceeddc075966dde5eb7c97d03c6993cd6
.exe windows x86

2f754f7eab8aa76ae66ec77587377de9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgA
GetFileTitleA
GetOpenFileNameW
FindTextA
PrintDlgA
ReplaceTextA
GetFileTitleW

gdi32

TextOutW
SetColorSpace
CreateSolidBrush
LineTo
GetObjectW
SetBkColor
EnumICMProfilesW
GetPath
GetSystemPaletteEntries
ModifyWorldTransform
GetRandomRgn
SetStretchBltMode
SetTextJustification
ExtFloodFill
SetFontEnumeration

shell32

SHQueryRecycleBinW
SHFileOperationA
SHInvokePrinterCommandA
RealShellExecuteExW
SHGetSpecialFolderPathA
FindExecutableW
SHAddToRecentDocs
SHGetDiskFreeSpaceA
DragQueryFileAorW
SHGetFileInfo
ExtractAssociatedIconW
ShellExecuteEx
SHGetDesktopFolder
ShellExecuteExW
FreeIconList
SHGetPathFromIDList
InternalExtractIconListA
SHGetMalloc
ExtractAssociatedIconExA
SHGetPathFromIDListA

advapi32

RegQueryMultipleValuesW
RegEnumKeyA
CryptDuplicateHash
CryptGetKeyParam
RegCreateKeyExW
RegQueryMultipleValuesA
RegEnumKeyW
CryptEnumProvidersA
RegRestoreKeyW
RegSetValueW

kernel32

GetLocaleInfoA
QueryPerformanceCounter
TlsAlloc
WriteFile
GetFileType
HeapAlloc
TlsGetValue
GetCommandLineA
LoadLibraryA
GetTickCount
InterlockedExchange
RtlUnwind
GetStartupInfoA
GetOEMCP
EnterCriticalSection
LeaveCriticalSection
HeapSize
IsValidCodePage
GetEnvironmentStringsW
GetCurrentProcess
MultiByteToWideChar
GetCurrentProcessId
FreeEnvironmentStringsA
GetUserDefaultLCID
GetTimeZoneInformation
GetProcAddress
GetStringTypeA
SetLastError
HeapCreate
GetModuleFileNameA
GetVersionExA
GetSystemInfo
LCMapStringW
VirtualAlloc
GetStdHandle
GetCPInfo
GetCurrentThreadId
GetTimeFormatA
HeapFree
TlsSetValue
WideCharToMultiByte
HeapReAlloc
InitializeCriticalSection
TerminateProcess
VirtualFree
HeapDestroy
GetACP
GetStringTypeW
GetDateFormatA
LCMapStringA
SetHandleCount
IsValidLocale
SetEnvironmentVariableA
VirtualProtect
GetCurrentThread
GetModuleHandleA
CompareStringW
UnhandledExceptionFilter
GetEnvironmentStrings
GetLastError
VirtualQuery
FreeEnvironmentStringsW
TlsFree
GetSystemTimeAsFileTime
ExitProcess
GetLocaleInfoW
IsBadWritePtr
DeleteCriticalSection
EnumSystemLocalesA
WritePrivateProfileSectionA
CompareStringA

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f754f7eab8aa76ae66ec77587377de9

Headers

File Characteristics

Imports

comdlg32

gdi32

shell32

advapi32

kernel32

Sections

.text Size: 111KB - Virtual size: 110KB

.data Size: 135KB - Virtual size: 166KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 111KB - Virtual size: 110KB

.data
Size: 135KB - Virtual size: 166KB

.rsrc
Size: 5KB - Virtual size: 4KB