25bb263faacdd396743c8db81685caa58569d286fd023894e1d04cb1e0036c6e

Sharing

Copy URL Twitter E-mail

General

Target

25bb263faacdd396743c8db81685caa58569d286fd023894e1d04cb1e0036c6e
Size

168KB
MD5

dd3e795d6c87b0960e528290e738626e
SHA1

91f87082573954553069b481077450436e43fe77
SHA256

25bb263faacdd396743c8db81685caa58569d286fd023894e1d04cb1e0036c6e
SHA512

989078c2dd1ccb9b8eaaee49d4fc852dcb7166086a1d3df38a5aa1bea6cf6e5898004b60668e5f3a8907919ea6158ccf12f903fd9962a6647a3ec0b6ca33736a
SSDEEP

3072:wOFFpMNU+but/10YxLVndmBY4Bz7+SQwlqzyO6d/W:THsU+kPdaBfzKJS4lw/

Score

N/A

Malware Config

Signatures

Files

25bb263faacdd396743c8db81685caa58569d286fd023894e1d04cb1e0036c6e
.exe windows x86

ba88d2e25b26bf8443bdcba6e265087f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteValueA
SHQueryInfoKeyA
SHStrDupA
SHGetValueA
PathFileExistsA
PathIsContentTypeA
SHEnumValueA
SHSetValueA
SHQueryValueExA

msvcrt

wcsncmp
rand
memmove
swprintf
wcstol
mbstowcs
wcscspn
wcschr
tolower
memcpy
sqrt
atol
_acmdln
clock
memset
sprintf
exit
calloc
time
malloc
srand

kernel32

lstrcpynA
SetLastError
GetStringTypeA
ExitProcess
FormatMessageA
GetFileAttributesA
GetACP
GlobalFindAtomA
WideCharToMultiByte
GetThreadLocale
CreateThread
VirtualFree
GetCurrentProcessId
GetLastError
WaitForSingleObject
GetLocalTime
GetCommandLineA
DeleteCriticalSection
GetFullPathNameA
HeapAlloc
GlobalDeleteAtom
VirtualQuery
GetVersionExA
GetProcessHeap
FindClose
GlobalAddAtomA
GetEnvironmentStrings
GetDateFormatA
LocalReAlloc
WriteFile
LoadLibraryExA
CreateEventA
GetStdHandle
SizeofResource
SetFilePointer
GetVersion
MulDiv
VirtualAlloc
GetSystemDefaultLangID
lstrcpyA

user32

IsWindowVisible
DefWindowProcA
GetCursor
GetMenuStringA
DefFrameProcA
EnableScrollBar
GetWindow
GetMenuItemInfoA
GetPropA
ClientToScreen
GetScrollInfo
GetClipboardData
DispatchMessageW
GetParent
DrawEdge
GetDCEx
FillRect
CheckMenuItem
EnumChildWindows
IsMenu
GetKeyState
ShowScrollBar
EnumThreadWindows
CreatePopupMenu
GetLastActivePopup
GetWindowTextA
DefMDIChildProcA
SystemParametersInfoA
CharLowerBuffA
FindWindowA
DispatchMessageA
IsDialogMessageA
CharLowerA
ShowWindow
GetDC
EndPaint
GetActiveWindow
BeginDeferWindowPos
EnableWindow
GetSubMenu
GetFocus
DrawIcon
SetWindowTextA
GetClassLongA
GetMenu
HideCaret
CreateWindowExA
SetTimer
EnableMenuItem
DrawIconEx
GetKeyNameTextA
IsWindowEnabled
DrawTextA
EndDeferWindowPos
CallNextHookEx
IsChild
TrackPopupMenu
CallWindowProcA
CharToOemA
CreateMenu
DrawFrameControl
FrameRect
GetDesktopWindow
CreateIcon
GetIconInfo
GetScrollRange
GetSysColor
EnumWindows
GetDlgItem
GetClassInfoA
GetForegroundWindow
GetScrollPos
DeferWindowPos
RegisterClassA
CharNextA
SetWindowLongA
GetMenuItemID
BeginPaint
GetMenuItemCount
GetMenuState
GetMessagePos
SetWindowPos
GetCapture
SetCursor
GetCursorPos
GetSysColorBrush

Sections

BSS
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 123KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 5KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ba88d2e25b26bf8443bdcba6e265087f

Headers

File Characteristics

Imports

shlwapi

msvcrt

kernel32

user32

Sections

BSS Size: 36KB - Virtual size: 36KB

DATA Size: 123KB - Virtual size: 123KB

.edata Size: 5KB - Virtual size: 84KB

.init Size: 2KB - Virtual size: 1KB

BSS
Size: 36KB - Virtual size: 36KB

DATA
Size: 123KB - Virtual size: 123KB

.edata
Size: 5KB - Virtual size: 84KB

.init
Size: 2KB - Virtual size: 1KB