ef544769f4b5271d1ce125ff90e861afa1557c6111a67ab7ed588232d035cf44

Sharing

Copy URL Twitter E-mail

General

Target

ef544769f4b5271d1ce125ff90e861afa1557c6111a67ab7ed588232d035cf44
Size

167KB
MD5

7e2ee7b35c5de48233d717789ec03469
SHA1

3a11b6c05150596826e1ec24b082a1edd9f4fcd2
SHA256

ef544769f4b5271d1ce125ff90e861afa1557c6111a67ab7ed588232d035cf44
SHA512

48d4305532e04fdb8d41691330fdf394eacf8b997d0d4d748ba65cee9a41e7af63bb2bff2f6968cfac706646579d875043dd072402edbfeb3785676910834793
SSDEEP

3072:jIl2PZ8K246V26R6wizKO0EuvxtRzWa146k:jeYBA6fj3oW16

Score

N/A

Malware Config

Signatures

Files

ef544769f4b5271d1ce125ff90e861afa1557c6111a67ab7ed588232d035cf44
.exe windows x86

d06a1e6d42fbf82d4f37fe07349773e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegEnumValueA
RegDeleteValueA

version

VerInstallFileA

gdi32

GetDIBColorTable
RestoreDC
SelectPalette
CreatePalette
GetDCOrgEx
CreateCompatibleDC

user32

IsIconic
SetMenuItemInfoA
TrackPopupMenu
GetFocus
GetMenuStringA
SetActiveWindow
GetForegroundWindow
ShowOwnedPopups
ChildWindowFromPoint
SetWindowLongW
GetDC
GetWindowLongW
GetScrollPos
CreateWindowExA
IsZoomed
GetMessagePos
SetScrollPos
GetClipboardData
SetWindowLongA
DispatchMessageW
SetCapture
GetDlgItem
ShowWindow
GetWindowTextA
GetClassInfoA
SetClipboardData
GetTopWindow
GetSystemMetrics
ShowScrollBar
GetPropA
SystemParametersInfoA
LoadBitmapA
GetDesktopWindow
IsWindow
EmptyClipboard
GetMenuItemCount
InsertMenuA
SetRect
DeleteMenu
RemovePropA
DefWindowProcA
GetActiveWindow
DrawTextA
CharToOemA
EnumWindows
KillTimer
FillRect
ScrollWindow
GetKeyNameTextA
InflateRect
GetSubMenu
GetSystemMenu
RegisterClipboardFormatA
WindowFromPoint
GetKeyboardLayoutNameA
PeekMessageW
EnumThreadWindows
GetClassLongA
SetClassLongA
CheckMenuItem
GetKeyboardLayoutList
GetKeyState
LoadKeyboardLayoutA
SetWindowPlacement
GetLastActivePopup
GetScrollRange
TranslateMessage
SetForegroundWindow
GetCapture
WaitMessage
MessageBeep
EnableScrollBar
SetScrollInfo
DrawEdge
MessageBoxA
SetWindowPos
IntersectRect
RedrawWindow
IsRectEmpty
SendMessageA
EndPaint
GetMenuState
CreateMenu
LoadIconA
OemToCharA
FindWindowA
DestroyMenu
SetScrollRange
IsWindowUnicode
IsDialogMessageW
DrawFrameControl
GetCursorPos
DestroyCursor
RegisterWindowMessageA
TranslateMDISysAccel
UnhookWindowsHookEx
CharUpperBuffA
SetPropA
ReleaseCapture
DefMDIChildProcA
DrawIconEx
ClientToScreen
GetWindowThreadProcessId
GetMenuItemID
CallWindowProcA
CloseClipboard
ReleaseDC
OffsetRect
GetWindowLongA
CreatePopupMenu
DefFrameProcA
PostQuitMessage
GetClassNameA
ActivateKeyboardLayout
MsgWaitForMultipleObjects
DestroyIcon
DrawMenuBar

oleaut32

SafeArrayGetUBound
SysFreeString
SafeArrayPtrOfIndex
SysReAllocStringLen
VariantChangeType
SysStringLen
RegisterTypeLib
SafeArrayGetElement
SafeArrayCreate
SysAllocStringLen

ole32

MkParseDisplayName
CLSIDFromProgID
CoGetObjectContext
OleRegGetUserType
CoReleaseMarshalData

kernel32

GetFileSize
LoadLibraryA
lstrcatA
SetErrorMode
VirtualAlloc
GetLastError
ExitThread
GetModuleHandleA
GlobalAlloc
GetProcAddress
HeapAlloc

shell32

DragQueryFileA

comctl32

ImageList_Write
ImageList_Draw

comdlg32

FindTextA
ChooseColorA
GetSaveFileNameA

msvcrt

strncmp
memmove
strcmp
atan
memcpy
mbstowcs
log

shlwapi

SHDeleteValueA
SHDeleteKeyA
SHQueryInfoKeyA

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 407B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 134KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d06a1e6d42fbf82d4f37fe07349773e0

Headers

File Characteristics

Imports

advapi32

version

gdi32

user32

oleaut32

ole32

kernel32

shell32

comctl32

comdlg32

msvcrt

shlwapi

Sections

.text Size: 29KB - Virtual size: 29KB

DATA Size: 512B - Virtual size: 407B

.data Size: 134KB - Virtual size: 218KB

.idata Size: 1KB - Virtual size: 1KB

.text
Size: 29KB - Virtual size: 29KB

DATA
Size: 512B - Virtual size: 407B

.data
Size: 134KB - Virtual size: 218KB

.idata
Size: 1KB - Virtual size: 1KB