cb4b5f6b225a3769eece1c96a31556b34cb64e5f4a13ea6e963f1f24d7976f16

Sharing

Copy URL Twitter E-mail

General

Target

cb4b5f6b225a3769eece1c96a31556b34cb64e5f4a13ea6e963f1f24d7976f16
Size

209KB
MD5

9b65d7ab1f2ff5e4f14340da74f1a24c
SHA1

0cd98d2dfa9ff6a4e762abab0c3c0b50b894ba34
SHA256

cb4b5f6b225a3769eece1c96a31556b34cb64e5f4a13ea6e963f1f24d7976f16
SHA512

f1a01ac772e98c3541027bfb3110f9334d336c2c62d4a1e423af145d00c9cc17e8fd4439cb96191c3cf2ca46e9275d2a774fff1721ba4284589a81f493377d0e
SSDEEP

3072:AwA+s5e7S7I8h3jhLwQowwa6NLjdF2VzSPbIRVvNF58LLoUK749iHLV7lZC0FaqL:AvRce/h3jFRow369WbF5/74oV5ZnFa

Score

N/A

Malware Config

Signatures

Files

cb4b5f6b225a3769eece1c96a31556b34cb64e5f4a13ea6e963f1f24d7976f16
.exe windows x86

cec1de1211adc3a377b7740ccc65451c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetMalloc
CoDisconnectObject
CoCreateGuid
CreateBindCtx
CoFreeUnusedLibraries
CreateOleAdviseHolder

user32

RegisterWindowMessageA
UnhookWindowsHookEx
SetMenuItemInfoA
GetMenuItemCount
DefMDIChildProcA
TranslateMessage
SystemParametersInfoA
ClientToScreen
GetDesktopWindow
GetClassInfoA
DestroyCursor
EnumChildWindows
KillTimer
CheckMenuItem
SetForegroundWindow
DefWindowProcA
GetMenuItemID
IsZoomed
DispatchMessageA
SetCursor
FindWindowA
GetWindow
PostQuitMessage
IsWindowEnabled
SetWindowPlacement
RemoveMenu
ShowWindow
EnableMenuItem
RedrawWindow
CharLowerA
GetKeyboardLayoutNameA
GetDCEx
PostMessageA
MapWindowPoints
GetKeyNameTextA
SetActiveWindow
SetScrollInfo
SetTimer
CallNextHookEx
RegisterClipboardFormatA
wsprintfA
GetClientRect
SetWindowLongW
OpenClipboard
FillRect
CreateIcon
SendMessageA
IsWindow
InsertMenuA
CharUpperBuffA
RemovePropA
SetWindowTextA
SetClassLongA
GetKeyState
WaitMessage
LoadCursorA
EqualRect
LoadBitmapA
InsertMenuItemA
GetTopWindow
DestroyIcon
CreateWindowExA
GetKeyboardLayoutList
GetWindowTextA
WindowFromPoint
ChildWindowFromPoint
SetMenu
CharToOemA
InflateRect
MessageBeep
GetWindowThreadProcessId
DrawFrameControl
DefFrameProcA
GetCursor
MoveWindow
IsRectEmpty
GetWindowLongA
GetKeyboardLayout
UpdateWindow
GetScrollPos
CharLowerBuffA
EnumWindows
GetClassNameA
CloseClipboard
PeekMessageW
EnableScrollBar
ReleaseCapture
LoadIconA
GetLastActivePopup
PtInRect
EnumThreadWindows
AdjustWindowRectEx
BeginPaint
CharNextW
GetClipboardData
UnregisterClassA
OemToCharA
GetScrollRange
GetCursorPos
LoadKeyboardLayoutA
GetWindowLongW
GetSysColor
IntersectRect
EndPaint
SetRect
SetFocus
DeleteMenu
ShowOwnedPopups
SetClipboardData
SetScrollRange
SendMessageW
SetScrollPos
ReleaseDC
GetMenu
GetDlgItem
CallWindowProcA
IsWindowVisible
DrawTextA
DestroyMenu
GetWindowRect
GetActiveWindow
GetSubMenu
GetMenuItemInfoA
ScreenToClient
SetCapture
GetClassLongA
GetPropA
EmptyClipboard
GetMessagePos
GetSystemMenu
GetKeyboardType
IsIconic
GetFocus
FrameRect
SetParent
SetWindowsHookExA
GetMenuStringA
IsDialogMessageW
CharNextA
TranslateMDISysAccel
InvalidateRect
MessageBoxA
CreatePopupMenu
GetCapture
RegisterClassA
IsWindowUnicode
DrawIconEx
DestroyWindow
GetWindowDC
TrackPopupMenu
GetForegroundWindow

shlwapi

SHDeleteValueA
SHSetValueA
SHStrDupA
PathIsContentTypeA
PathFileExistsA
SHEnumValueA
PathIsDirectoryA
SHQueryInfoKeyA
PathGetCharTypeA
SHDeleteKeyA

advapi32

RegEnumKeyExA
RegEnumValueA

shell32

Shell_NotifyIconA

msvcrt

time
log

gdi32

CreateDIBitmap
CreateFontIndirectA
CreatePenIndirect
CreatePalette
GetBitmapBits

oleaut32

SysStringLen
VariantChangeType
RegisterTypeLib
SysReAllocStringLen
SafeArrayCreate
SafeArrayUnaccessData

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
FindTextA
ChooseColorA

kernel32

GetModuleHandleA
VirtualAlloc
GetCommandLineA
GetVersionExA
ExitProcess
GetLastError
GetCommandLineW
ExitThread
IsBadReadPtr
GlobalAlloc
lstrlenA
LoadLibraryA
GetACP
GetProcAddress

version

VerInstallFileA
GetFileVersionInfoSizeA

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 689B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 512B - Virtual size: 501B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc4
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc1
Size: 512B - Virtual size: 438B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cec1de1211adc3a377b7740ccc65451c

Headers

File Characteristics

Imports

ole32

user32

shlwapi

advapi32

shell32

msvcrt

gdi32

oleaut32

comdlg32

kernel32

version

Sections

.text Size: 67KB - Virtual size: 67KB

.data Size: 1024B - Virtual size: 689B

.rsrc0 Size: 512B - Virtual size: 501B

.rsrc4 Size: 512B - Virtual size: 24B

.rsrc8 Size: 6KB - Virtual size: 6KB

.rsrc1 Size: 512B - Virtual size: 438B

.rsrc9 Size: 130KB - Virtual size: 129KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 67KB - Virtual size: 67KB

.data
Size: 1024B - Virtual size: 689B

.rsrc0
Size: 512B - Virtual size: 501B

.rsrc4
Size: 512B - Virtual size: 24B

.rsrc8
Size: 6KB - Virtual size: 6KB

.rsrc1
Size: 512B - Virtual size: 438B

.rsrc9
Size: 130KB - Virtual size: 129KB

.rsrc
Size: 1024B - Virtual size: 976B