11b82fd831b428ef437de36221414c2f936dafd14e20a29095800d8a0d9bf1aa

Sharing

Copy URL

Twitter E-mail

General

Target

11b82fd831b428ef437de36221414c2f936dafd14e20a29095800d8a0d9bf1aa
Size

100KB
MD5

32199e8acb03b3354bb8edb6c945c824
SHA1

2bd3e451ae9dfb5434a1d4b992fb2e0cafe4d6c9
SHA256

11b82fd831b428ef437de36221414c2f936dafd14e20a29095800d8a0d9bf1aa
SHA512

c2d803baa7562b79f6b28de87ce5aef0eac4cb6d26d5b62689f9b251ecea530afcf0ed760831c6a7694de2afab26c1b0c53d71b4ee02684d4ccb6785786b8965
SSDEEP

1536:YMyZAObOTBvAceO7xJz19omW6W2gO4sKJ7JZAObx:YMGpoBvAfO7bz19ombW241Jt2

Score

N/A

Malware Config

Signatures

Files

11b82fd831b428ef437de36221414c2f936dafd14e20a29095800d8a0d9bf1aa
.exe windows x86

e691d6cc677ef2033b869324545ffe3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBitmapBits
AddFontResourceExA
AddFontMemResourceEx
GetCurrentPositionEx
GetDCOrgEx
CloseMetaFile
ClearBrushAttributes
AddFontResourceExW
GetPixel
CreateSolidBrush
GetClipBox
CloseFigure
AbortPath
CopyMetaFileA
DeleteObject
AddFontResourceA
AddFontResourceW
GetClipBox
GetDCOrgEx
AddFontResourceTracking
GetPixel
BeginPath
GetCurrentPositionEx
AddFontResourceA
AddFontMemResourceEx
CloseFigure
DeleteObject
CreateSolidBrush
ExcludeClipRect
CancelDC
GetPixel
AddFontResourceExA
ClearBitmapAttributes
DeleteObject
SetTextColor
GetBitmapBits
RestoreDC
AddFontResourceExA
BeginPath
GetDCOrgEx
AddFontMemResourceEx
GetCurrentPositionEx

advapi32

RegQueryValueExW
RegReplaceKeyA
RegQueryValueExA
RegDeleteValueW
RegEnumValueA
RegLoadKeyW
RegCreateKeyExA
RegQueryValueW
RegOpenKeyA
RegGetKeySecurity
RegReplaceKeyW
RegDeleteValueA
RegReplaceKeyA
RegEnumKeyA
RegQueryInfoKeyW
RegQueryValueExA
RegDeleteValueW
RegCreateKeyW
RegOpenKeyExW
RegFlushKey
RegCreateKeyExW

comctl32

ImageList_Remove
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageRect
ImageList_AddMasked
ImageList_Replace
ImageList_Copy
ImageList_AddIcon
ImageList_DragShowNolock

kernel32

GetCPInfo
GetFileSize
OpenFileMappingA
GetFileTime
DeleteFileA
GetComputerNameA
Sleep
CreateThread
CopyFileW
WriteFile
CopyFileExA
DeleteFileW
FindFirstFileA
CreateDirectoryA
CopyFileExW
GetStdHandle
OpenFile
GetCommandLineA
CopyFileExW
FindFirstFileA
GetStdHandle
CreateDirectoryA
GetConsoleMode
Sleep
DeleteFileA
SetLastError
GlobalFree
CopyFileW
CreateThread
DeleteAtom
DeleteFileW
GetComputerNameA

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e691d6cc677ef2033b869324545ffe3c

Headers

File Characteristics

Imports

gdi32

advapi32

comctl32

kernel32

Sections

.text Size: 8KB - Virtual size: 6KB

.data Size: 68KB - Virtual size: 65KB

.tls Size: 4KB - Virtual size: 4KB

.rdata Size: 8KB - Virtual size: 6KB

.idata Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 45KB

.text
Size: 8KB - Virtual size: 6KB

.data
Size: 68KB - Virtual size: 65KB

.tls
Size: 4KB - Virtual size: 4KB

.rdata
Size: 8KB - Virtual size: 6KB

.idata
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 45KB