c62636fcba9d3094bb0c955515f1852d1e97b83982b83bd8041e1ca3866af7f7

Sharing

Copy URL Twitter E-mail

General

Target

c62636fcba9d3094bb0c955515f1852d1e97b83982b83bd8041e1ca3866af7f7
Size

160KB
MD5

379c9b593e2b312dac772b7c06c33386
SHA1

4bcaa316773778f4ede9b3a61caa8aba440395db
SHA256

c62636fcba9d3094bb0c955515f1852d1e97b83982b83bd8041e1ca3866af7f7
SHA512

dac9b547da6805cb16bb0b1fe55c8968cd35e1d54b2740f50378496df7c8dff29d53c6634fffbe92e49e26b7585075857438858eae2d51a9cb7d5c338cc2ef70
SSDEEP

3072:jy981wdDuwuQrtlfiqxol9XH91uHPxqkW2E+FD72tPm2YVzjmIsJ:j82wddzrXkXdRkW+t2tPOVzjmIw

Score

N/A

Malware Config

Signatures

Files

c62636fcba9d3094bb0c955515f1852d1e97b83982b83bd8041e1ca3866af7f7
.exe windows x86

0b7aafeabc3bf84d7ab0542b2e78920b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Destroy
ImageList_Read
ImageList_DragShowNolock
ImageList_Create
ImageList_Add
ImageList_Draw

kernel32

GetModuleHandleA
ExitProcess
FormatMessageA
VirtualAlloc
GetOEMCP
GetEnvironmentStrings
LocalAlloc
Sleep
GetCPInfo
GetProcAddress

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoA

shell32

SHGetSpecialFolderLocation
SHGetFileInfoA

oleaut32

OleLoadPicture
RegisterTypeLib
VariantCopyInd
SysReAllocStringLen
SysFreeString
VariantChangeType

comdlg32

GetOpenFileNameA

ole32

CoDisconnectObject
CoReleaseMarshalData
CreateBindCtx
CoGetObjectContext
StringFromIID
WriteClassStm
CreateOleAdviseHolder
CoFreeUnusedLibraries
CoTaskMemFree

user32

DefFrameProcA
RegisterWindowMessageA
ChildWindowFromPoint
SetClipboardData
OpenClipboard
MapWindowPoints
GetCursor
SetForegroundWindow
GetDesktopWindow
MoveWindow
RemovePropA
IsWindowVisible
FindWindowA
GetSysColorBrush
GetKeyboardLayoutList
GetScrollPos
SetScrollPos
SetScrollInfo
SetClassLongA
ScreenToClient
SendMessageW
FrameRect
MessageBoxA
MsgWaitForMultipleObjects

advapi32

RegOpenKeyExA

gdi32

GetDCOrgEx
GetDIBColorTable
GetDIBits
RestoreDC
GetCurrentPositionEx
GetPixel
CreateFontIndirectA
SetBkMode

shlwapi

PathIsContentTypeA
PathIsDirectoryA
SHQueryValueExA
SHQueryInfoKeyA
SHDeleteValueA
PathFileExistsA
SHDeleteKeyA
SHGetValueA

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b7aafeabc3bf84d7ab0542b2e78920b

Headers

File Characteristics

Imports

comctl32

kernel32

version

shell32

oleaut32

comdlg32

ole32

user32

advapi32

gdi32

shlwapi

Sections

.text Size: 27KB - Virtual size: 27KB

.edata Size: 1024B - Virtual size: 104KB

.tls Size: 130KB - Virtual size: 130KB

.text
Size: 27KB - Virtual size: 27KB

.edata
Size: 1024B - Virtual size: 104KB

.tls
Size: 130KB - Virtual size: 130KB