caa8267533928150cddaec605eb29c03fb09b32b0483421728ffc98fbd7cbb85

Sharing

Copy URL Twitter E-mail

General

Target

caa8267533928150cddaec605eb29c03fb09b32b0483421728ffc98fbd7cbb85
Size

1.4MB
MD5

57b0086b3261b44ca1763481145c3a5e
SHA1

1dc985126d62bfa14676ba0ba051de8b64ee8cae
SHA256

caa8267533928150cddaec605eb29c03fb09b32b0483421728ffc98fbd7cbb85
SHA512

852a92d6a956b4b9b8df6e68e3211828926e064a79bd3945abccfbcacf456099e8906be50ffffd42a9452ef35256982568770e44b9d824cc2a8efc3b44b50c9c
SSDEEP

24576:9BodkcpLf5f2lgg8roz1GgKoYfOEPhWG87N3pkRzi5Q602CzwjoN7z:0pjku2Ctd87N+Ie2CckF

Score

N/A

Malware Config

Signatures

Files

caa8267533928150cddaec605eb29c03fb09b32b0483421728ffc98fbd7cbb85
.exe windows x86

3af8d5765388b2e5f4dcc2f2c940294a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fopen
fprintf
_CIacos
wcscpy
wcsncat
time
_beginthreadex
atol
iswctype
sprintf
_vsnprintf
ceil
tolower
_wcslwr
_CIsqrt
_stricmp
__set_app_type
_unlock
wcsncpy
_wcsdup

comctl32

CreatePropertySheetPageW
ImageList_ReplaceIcon
PropertySheetW
InitCommonControls
ImageList_Create
ImageList_Draw
ImageList_Destroy

oleaut32

SafeArrayPtrOfIndex
SafeArrayCreate
SafeArrayAccessData
SafeArrayGetElement
LoadTypeLib
VariantInit
SafeArrayGetLBound
RegisterTypeLib
CreateErrorInfo
SysStringLen
VariantClear
SysFreeString

ole32

CoGetInterfaceAndReleaseStream
OleRegEnumVerbs
StringFromCLSID
CoInitializeSecurity
CoGetClassObject
GetHGlobalFromStream
StgIsStorageFile
CoCreateInstanceEx
PropVariantClear
CoRevokeClassObject
ReleaseStgMedium
OleSaveToStream
CoCreateGuid
StgOpenStorage
OleLoadFromStream
CoCreateFreeThreadedMarshaler

kernel32

GetSystemTimeAsFileTime
SetLastError
VirtualAlloc
ReleaseMutex
SetEvent
GetLocaleInfoW
LoadLibraryW
WaitForSingleObject
GetLastError
GetSystemDirectoryA
ExitProcess
InitializeCriticalSection
GetDriveTypeW
GetFileType
lstrcpynW
DeleteFileW
FileTimeToSystemTime
QueryPerformanceCounter
LoadLibraryA
GetVersionExA
GetCommandLineW
Sleep
GetCPInfo
LocalAlloc
MultiByteToWideChar
HeapReAlloc
GetThreadLocale
OpenMutexW
lstrcpyW

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1.4MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3af8d5765388b2e5f4dcc2f2c940294a

Headers

File Characteristics

Imports

msvcrt

comctl32

oleaut32

ole32

kernel32

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 1.4MB - Virtual size: 2.9MB

.tls Size: 8KB - Virtual size: 8KB

.tls Size: - Virtual size: 7KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 1.4MB - Virtual size: 2.9MB

.tls
Size: 8KB - Virtual size: 8KB

.tls
Size: - Virtual size: 7KB

.rsrc
Size: 8KB - Virtual size: 8KB