4c48070e6ca945121c41e4fde550aa6febc1ac17c0e82a1efec2a4256f160c7f

Sharing

Copy URL

Twitter E-mail

General

Target

4c48070e6ca945121c41e4fde550aa6febc1ac17c0e82a1efec2a4256f160c7f
Size

84KB
MD5

f6ebd48c9eb1c87bcc1387e287913c8b
SHA1

8d6218ee9f759dc5f7f92d1cfddb3c304ed0cfa5
SHA256

4c48070e6ca945121c41e4fde550aa6febc1ac17c0e82a1efec2a4256f160c7f
SHA512

0a281c1f27d566b9da9c5bd5929fd95cd52fc9fd3824934057b5ef95c7fa593a889ea8dff6452a6107ccc9692262a9462ab1d5153fea5d7dee6339de30bcbd57
SSDEEP

1536:t4Pma6BNzBpfMmS6/yBrpGrK+ofPYam2tJDFxxDRVvh0+MW+f7OxMu+CaVIiI:GwNXqWK+OPmGJ5XtVy/fua63

Score

N/A

Malware Config

Signatures

Files

4c48070e6ca945121c41e4fde550aa6febc1ac17c0e82a1efec2a4256f160c7f
.exe windows x86

7bdd911a1f749abcc8f5991e57f73c71

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFindAtomA
SetFilePointer
DeleteCriticalSection
GetFileSize
LoadLibraryExA
MulDiv
GetModuleHandleA
FreeResource
LockResource
GetStringTypeW
CompareStringA
GetLocalTime
LocalFree
SizeofResource
Sleep
VirtualAllocEx
ExitThread
SetHandleCount
GetCPInfo
LocalAlloc
VirtualAlloc
GetCurrentThread
VirtualQuery
SizeofResource
LoadResource
SetErrorMode
GetCurrentProcess
CompareStringA
GetCommandLineA
LoadLibraryExA
ExitProcess

shell32

SHGetDiskFreeSpaceA
SHGetSpecialFolderLocation
SHGetFolderPathA
SHFileOperationA
SHGetDiskFreeSpaceA
DragQueryFileA
SHGetFileInfoA

shlwapi

SHQueryInfoKeyA

msvcrt

malloc
memset
sprintf
memcpy
wcscspn
swprintf
exit
wcstol
memmove
calloc
mbstowcs
tolower
rand
_acmdln

advapi32

RegEnumKeyA
RegLoadKeyA
RegCreateKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyExA

version

VerInstallFileA
VerQueryValueA
VerFindFileA

user32

IsWindowVisible
EndPaint
GetPropA
DrawIconEx
CreateIcon
GetCursor
DeferWindowPos
GetCapture
FillRect
RegisterClassA
CharLowerA
MessageBoxA
FindWindowA
EnumWindows
GetWindow
EnableScrollBar
ShowScrollBar

ole32

WriteClassStm
CoDisconnectObject
CoGetObjectContext
CoUninitialize
CoTaskMemFree
CLSIDFromProgID
CoRevokeClassObject
CoCreateInstanceEx
CreateStreamOnHGlobal
StgOpenStorage

gdi32

SetPixel
CreatePenIndirect
SetBkColor
CreateBrushIndirect
GetObjectA
GetCurrentPositionEx
SetTextColor
SelectPalette
GetClipBox
GetDIBColorTable

comdlg32

GetFileTitleA
GetOpenFileNameA
FindTextA
GetSaveFileNameA

Sections

.bss
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

BSS
Size: 47KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7bdd911a1f749abcc8f5991e57f73c71

Headers

File Characteristics

Imports

kernel32

shell32

shlwapi

msvcrt

advapi32

version

user32

ole32

gdi32

comdlg32

Sections

.bss Size: 24KB - Virtual size: 24KB

BSS Size: 47KB - Virtual size: 70KB

.rdata Size: 6KB - Virtual size: 6KB

INIT Size: 1KB - Virtual size: 1KB

.edata Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 571B

.bss
Size: 24KB - Virtual size: 24KB

BSS
Size: 47KB - Virtual size: 70KB

.rdata
Size: 6KB - Virtual size: 6KB

INIT
Size: 1KB - Virtual size: 1KB

.edata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 571B