d456cb38e00ea7eb00f2d623434535d0b24c4abf42424f7029841aff9dd1465b

Sharing

Copy URL Twitter E-mail

General

Target

d456cb38e00ea7eb00f2d623434535d0b24c4abf42424f7029841aff9dd1465b
Size

94KB
MD5

11583ace44036528c6d432afea4cbce7
SHA1

c73ca8dd48028a68f72c14a8b72939e93887fe36
SHA256

d456cb38e00ea7eb00f2d623434535d0b24c4abf42424f7029841aff9dd1465b
SHA512

4d641e511cf536ef7fdf3e14d7eed4dc6690276f731aa65ed7cad5a9714b42fe71f1ce605a0caeb0ac298a29a1bb0f95743bf29aa74b407e705e439023601e3f
SSDEEP

1536:3Juhd1BSpXBzWDhqp/Kpm2o7GRlR08qx9B9tauyAz:bJBydrRrY9tPz

Score

N/A

Malware Config

Signatures

Files

d456cb38e00ea7eb00f2d623434535d0b24c4abf42424f7029841aff9dd1465b
.exe windows x86

9854003c51db2855f12a96d9e729facd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

tan
strcmp
memmove
malloc
memcpy

kernel32

Sleep
WriteFile
LoadLibraryA
GetTickCount
GetCurrentProcess
GetDateFormatA
GetFileType
LoadResource
EnumCalendarInfoA
FreeLibrary
FormatMessageA
EnterCriticalSection
GetStringTypeA
InitializeCriticalSection
GetLastError
SetLastError
MulDiv
GetCommandLineA
HeapFree
CompareStringA
CloseHandle
GetUserDefaultLCID
SetErrorMode
GetVersionExA
SetHandleCount
GlobalFindAtomA
lstrcpyA
GetStringTypeW
SetEndOfFile
GetCurrentThread
SetEvent
SizeofResource
GetFullPathNameA
GetVersion
ExitThread
GetStdHandle
GetThreadLocale
ExitProcess
LocalAlloc
CreateEventA
lstrcmpA
GetACP
ReadFile
GetSystemDefaultLangID
GetModuleHandleA
CreateThread
VirtualQuery
LoadLibraryExA
VirtualAllocEx
lstrcmpiA
GetFileAttributesA
CreateFileA
GlobalDeleteAtom
GetModuleFileNameA
VirtualAlloc
GetProcessHeap
lstrlenA
MoveFileExA
GetOEMCP
FindClose
LocalReAlloc

gdi32

GetDCOrgEx
SetTextColor
SetBkMode
CreateBrushIndirect
CreateDIBSection

user32

GetMenu
GetIconInfo
IsWindowVisible
GetCursorPos
GetDC
BeginDeferWindowPos
EnumThreadWindows
DefWindowProcA
ClientToScreen
CharToOemA
CheckMenuItem
CharNextA
CharLowerBuffA
FrameRect
HideCaret
DeferWindowPos
GetMenuItemCount
IsChild
GetClassInfoA
DefFrameProcA
CharLowerA
GetMenuState
ShowScrollBar
RegisterClassA
GetActiveWindow
FillRect
GetWindowTextA
GetScrollPos
GetClientRect
IsDialogMessageA
SetWindowLongA
CreateIcon
GetCursor
DrawTextA
DispatchMessageW
GetScrollRange
DrawMenuBar
CallWindowProcA
GetMenuItemID

oleaut32

GetErrorInfo
SafeArrayGetElement
VariantChangeType
SysReAllocStringLen
VariantCopyInd

shlwapi

PathIsDirectoryA
PathFileExistsA
PathIsContentTypeA
PathGetCharTypeA
SHQueryInfoKeyA
SHDeleteKeyA
SHQueryValueExA

comctl32

ImageList_Remove
ImageList_Destroy
ImageList_Read
ImageList_DrawEx
ImageList_Add

advapi32

RegCreateKeyA
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumKeyA

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 512B - Virtual size: 257B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9854003c51db2855f12a96d9e729facd

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

oleaut32

shlwapi

comctl32

advapi32

Sections

.text Size: 46KB - Virtual size: 46KB

.bss Size: 512B - Virtual size: 257B

.init Size: 46KB - Virtual size: 45KB

.text
Size: 46KB - Virtual size: 46KB

.bss
Size: 512B - Virtual size: 257B

.init
Size: 46KB - Virtual size: 45KB