81179a1ce68381b534ef82a985f0a57a7f618ecadfcdafaa7016824f2589aab3

Sharing

Copy URL Twitter E-mail

General

Target

81179a1ce68381b534ef82a985f0a57a7f618ecadfcdafaa7016824f2589aab3
Size

114KB
MD5

11f025d105033f92bf1590c3d0703b70
SHA1

39edf4260fa01a1bbbe73d1f34a5f26e3982994e
SHA256

81179a1ce68381b534ef82a985f0a57a7f618ecadfcdafaa7016824f2589aab3
SHA512

d41b627222b4f0648acea563f59c3bb7d9425212defca9a22fabd0581be5ae274a7ff25f310064ba3a43a51ab0816b8470710990a7282d730d5b504bcdf2136f
SSDEEP

1536:0Mv3tc/FalEZtepQI7Pt92twh8j8rGFoXqOGGpGhHE:0MlcF8EXW77Pt92tes8rGoHpG

Score

N/A

Malware Config

Signatures

Files

81179a1ce68381b534ef82a985f0a57a7f618ecadfcdafaa7016824f2589aab3
.exe windows x86

30930473b07a722afab2d0b38ea734b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoCreateFreeThreadedMarshaler
CreateOleAdviseHolder
OleRun
CoGetObjectContext
CoGetContextToken
StringFromIID
CoCreateFreeThreadedMarshaler
ReleaseStgMedium
MkParseDisplayName
CoGetMalloc
OleRegGetUserType
PropVariantClear

comctl32

ImageList_Add
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Write
ImageList_Remove
ImageList_Create
ImageList_DrawEx
ImageList_Add
ImageList_Draw
ImageList_DrawEx

kernel32

GetProcAddress
GetModuleHandleA
GetCommandLineA
GetLastError
GlobalAlloc
VirtualAlloc
ExitThread
ExitProcess
GetVersion
GetTickCount
SetFilePointer
GetLocalTime
FreeResource
GetProcAddress
GetCurrentThread
GetTickCount

oleaut32

SysFreeString
SysStringLen
SysReAllocStringLen
VariantChangeType
SafeArrayGetUBound
RegisterTypeLib
SafeArrayPtrOfIndex
VariantChangeType
GetErrorInfo
SafeArrayGetElement

user32

CreateIcon
SetParent
CharUpperBuffA
SetRect
InsertMenuA
OemToCharA
GetFocus
EnableWindow
IntersectRect
MsgWaitForMultipleObjects

gdi32

GetPaletteEntries
SelectPalette
GetCurrentPositionEx
CreateCompatibleBitmap
LineTo
GetObjectA
CreateBrushIndirect
LineTo
GetCurrentPositionEx
CopyEnhMetaFileA
CreatePalette
CreateDIBSection
SelectPalette
GetDIBits
SetTextColor

shlwapi

SHGetValueA
SHQueryValueExA
SHDeleteValueA
SHSetValueA
SHDeleteKeyA
PathIsContentTypeA
PathFileExistsA
SHStrDupA
SHQueryInfoKeyA
PathIsDirectoryA
PathIsContentTypeA
SHDeleteValueA
SHDeleteKeyA
PathGetCharTypeA
SHQueryInfoKeyA
PathFileExistsA

shell32

SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetFileInfoA
SHGetSpecialFolderLocation
SHFileOperationA
SHGetDiskFreeSpaceA
Shell_NotifyIconA
SHGetFolderPathA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA

version

GetFileVersionInfoA
VerQueryValueA

advapi32

RegLoadKeyA
RegOpenKeyA
RegCreateKeyExA

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 512B - Virtual size: 495B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 433B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

BSS
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

30930473b07a722afab2d0b38ea734b1

Headers

File Characteristics

Imports

ole32

comctl32

kernel32

oleaut32

user32

gdi32

shlwapi

shell32

comdlg32

version

advapi32

Sections

.text Size: 31KB - Virtual size: 31KB

DATA Size: 512B - Virtual size: 495B

.idata Size: 79KB - Virtual size: 79KB

.tls Size: 512B - Virtual size: 433B

BSS Size: 1024B - Virtual size: 776B

.text
Size: 31KB - Virtual size: 31KB

DATA
Size: 512B - Virtual size: 495B

.idata
Size: 79KB - Virtual size: 79KB

.tls
Size: 512B - Virtual size: 433B

BSS
Size: 1024B - Virtual size: 776B