d3b9417fc189315b63979e88471ef45941a6715ad3aec47b6f7650d572830862

Sharing

Copy URL Twitter E-mail

General

Target

d3b9417fc189315b63979e88471ef45941a6715ad3aec47b6f7650d572830862
Size

87KB
MD5

d6146616911add5f0fc9ea7f5199b341
SHA1

23a8a04292d5b0e0a926cf41629017dcb1ae0f0b
SHA256

d3b9417fc189315b63979e88471ef45941a6715ad3aec47b6f7650d572830862
SHA512

8cb1d59394990dfc188e335471f6856610e38b10065d0eda6830d2ed8dd515f55eeac48d4e71ad8604655149dd74d0ebf3c86d865c4d30d0bf5a69ac52c3f47e
SSDEEP

1536:jfcIW8cauFkoEiLZmKdNB8Qz5bazUXxP6Dvp+6XR5yoGxRzbui4:jEopuFk92mI5bupU6XvyomE

Score

N/A

Malware Config

Signatures

Files

d3b9417fc189315b63979e88471ef45941a6715ad3aec47b6f7650d572830862
.exe windows x86

765e36b12131bf5f50492d73d5d0c08b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryInfoKeyA
RegLoadKeyW
RegOpenKeyExA
RegQueryValueA
RegOpenKeyW
RegEnumValueA
RegCreateKeyExA
RegCreateKeyExW
RegEnumKeyExA
RegQueryValueW
RegEnumKeyExW
RegReplaceKeyW
RegOpenKeyExW
RegGetKeySecurity
RegEnumKeyW
RegLoadKeyA
RegDeleteValueA
RegQueryInfoKeyW
RegQueryValueExW
RegReplaceKeyA

kernel32

CloseHandle
GetFileType
GetLocalTime
GetCPInfo
GetCommandLineA
GlobalFree
GetDateFormatA
HeapFree
FreeLibrary
GetStdHandle
DeleteFileA
GlobalAlloc
SetLastError
GetModuleHandleA
lstrcmpiA
GetModuleFileNameA
lstrlenA

comctl32

ImageList_GetImageInfo
ImageList_Remove
ImageList_DragShowNolock
ImageList_LoadImageA
ImageList_GetIcon
ImageList_DragLeave
ImageList_DrawEx
ImageList_Replace
ImageList_DragEnter
ImageList_Draw
ImageList_LoadImage
ImageList_Copy
ImageList_GetIconSize
ImageList_GetDragImage
ImageList_GetImageCount
ImageList_GetImageRect
ImageList_LoadImageW
ImageList_AddMasked
ImageList_BeginDrag
ImageList_DrawIndirect

user32

DrawIconEx
GetMenu
CopyRect
GetCursor
EndDialog
AppendMenuW
CalcMenuBar
LoadMenuA
LoadCursorA
IsWindow
GetWindowTextLengthA
AlignRects
GetWindowTextA
GetDC
CloseWindow
CreateIcon
DrawIcon
IsMenu

Sections

.WjxV
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ISJFbe
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Dqfcew
Size: 5KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.HBstq
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

765e36b12131bf5f50492d73d5d0c08b

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

user32

Sections

.WjxV Size: 7KB - Virtual size: 7KB

.ISJFbe Size: 28KB - Virtual size: 28KB

.Dqfcew Size: 5KB - Virtual size: 20KB

.HBstq Size: 2KB - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 4KB

.WjxV
Size: 7KB - Virtual size: 7KB

.ISJFbe
Size: 28KB - Virtual size: 28KB

.Dqfcew
Size: 5KB - Virtual size: 20KB

.HBstq
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 4KB