ca9a4e0f0b408c76221b9f15f25e1d453fa53818235a48b3021d99132dea5e52

Sharing

Copy URL Twitter E-mail

General

Target

ca9a4e0f0b408c76221b9f15f25e1d453fa53818235a48b3021d99132dea5e52
Size

222KB
MD5

22699e1cf8fcf2569438277b185775f5
SHA1

ce0d5e6a422f2597267a1821fca1bdfa2e814b81
SHA256

ca9a4e0f0b408c76221b9f15f25e1d453fa53818235a48b3021d99132dea5e52
SHA512

402f9cf048218d49a90eca72e99ab5e5f426d0e4397b3e8c030264326e746ef2e4f6d613ec76d5f47f848bd342a4ec05df4a5f3c180ddf3e8b5ecbcb68726aee
SSDEEP

3072:uuGtY6dRhpWyb68cAW852fuhynoHKXZprA6MrQYB4dpQ3iphpw+K:Qxj68c18cfuhYoHKXZp09rQXfQyju+

Score

N/A

Malware Config

Signatures

Files

ca9a4e0f0b408c76221b9f15f25e1d453fa53818235a48b3021d99132dea5e52
.exe windows x86

ea4cc0308a359fc12124f0f9c94539ff

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

comctl32

ImageList_Read
ImageList_DrawEx
ImageList_Draw
ImageList_Remove
ImageList_Add
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Write
ImageList_Destroy

version

GetFileVersionInfoSizeA
VerInstallFileA
VerQueryValueA
GetFileVersionInfoA
VerInstallFileA
GetFileVersionInfoSizeA

ole32

MkParseDisplayName
CoGetObjectContext
ReleaseStgMedium
OleCreateStaticFromData
OleRegGetUserType
StgOpenStorage
CreateStreamOnHGlobal
CreateOleAdviseHolder
OleRun
StringFromIID
CoReleaseMarshalData
CoFreeUnusedLibraries
CoUninitialize
CoReleaseMarshalData
CoRegisterClassObject
GetHGlobalFromStream
ReleaseStgMedium
CoGetContextToken
CreateBindCtx

kernel32

LoadLibraryA
GlobalAlloc
ExitProcess
VirtualAllocEx
EnterCriticalSection
GetCurrentProcess
GetOEMCP
GetACP
GetModuleHandleA
lstrlenA
LocalAlloc

advapi32

RegCreateKeyExA
RegQueryValueA
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA

user32

IsWindowEnabled
SetTimer
EndPaint
MsgWaitForMultipleObjects
DestroyMenu
SetWindowPos
SetMenu
FindWindowA
IsWindowVisible
GetCursor
GetActiveWindow
MessageBoxA
IsChild
IsWindowEnabled
SetScrollRange

msvcrt

sprintf
sqrt
wcstol
wcschr
rand
mbstowcs
clock
_acmdln
wcsncmp
srand
exit
swprintf
tolower

oleaut32

SafeArrayGetUBound
GetErrorInfo
VariantChangeType
SafeArrayUnaccessData
SysStringLen
SafeArrayPtrOfIndex
VariantCopyInd
SafeArrayCreate

shlwapi

SHGetValueA
SHQueryValueExA
SHStrDupA
PathIsDirectoryA
SHSetValueA
SHQueryInfoKeyA

comdlg32

FindTextA
GetSaveFileNameA

shell32

SHGetSpecialFolderLocation
SHGetDesktopFolder

gdi32

GetPaletteEntries
SetBkMode
GetCurrentPositionEx

Sections

CODE
Size: 75KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 59KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 3KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea4cc0308a359fc12124f0f9c94539ff

Headers

File Characteristics

Imports

comctl32

version

ole32

kernel32

advapi32

user32

msvcrt

oleaut32

shlwapi

comdlg32

shell32

gdi32

Sections

CODE Size: 75KB - Virtual size: 76KB

.data Size: 27KB - Virtual size: 28KB

.rdata Size: 59KB - Virtual size: 60KB

.tls Size: 42KB - Virtual size: 44KB

INIT Size: 3KB - Virtual size: 60KB

DATA Size: 512B - Virtual size: 4KB

.text Size: 512B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 12KB - Virtual size: 12KB

CODE
Size: 75KB - Virtual size: 76KB

.data
Size: 27KB - Virtual size: 28KB

.rdata
Size: 59KB - Virtual size: 60KB

.tls
Size: 42KB - Virtual size: 44KB

INIT
Size: 3KB - Virtual size: 60KB

DATA
Size: 512B - Virtual size: 4KB

.text
Size: 512B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 12KB - Virtual size: 12KB