d5964f797b2d2e4d562c37920d61c4b9ab8a74dc807114f2ff856cdf0097c0d3

General

Target

d5964f797b2d2e4d562c37920d61c4b9ab8a74dc807114f2ff856cdf0097c0d3
Size

818KB
MD5

74834c05017f8720f68188486f2059e1
SHA1

5a45c97f6c98a3a531f8088cdb071c74fca191bc
SHA256

d5964f797b2d2e4d562c37920d61c4b9ab8a74dc807114f2ff856cdf0097c0d3
SHA512

c489e2222d3d2c2b3ebcfe81a1c93b1ee7adce9d285221106bd02b5faea034d856ebf80abb30824420aad491536f32871aaf10007ec3977428a895820daec095
SSDEEP

24576:0JBEm8mqwQ6tn0lclTeVPzVbnBxt6aze9CRyqr2Ha:K98m46tn0lc6PhtRze9Cwqr

Score

N/A

Malware Config

Signatures

Files

d5964f797b2d2e4d562c37920d61c4b9ab8a74dc807114f2ff856cdf0097c0d3
.exe windows x86

1f8d6add7fffeca1655834f6b3cd521e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

uxtheme

OpenThemeData
GetThemeInt
CloseThemeData
IsThemeActive
SetWindowTheme
GetThemeColor
GetThemeFont
GetThemeSysSize

dsprop

ErrMsg
ReportError
MsgBox
CheckADsError
FindSheet

ntshrui

IsFolderPrivateForUser
IsPathSharedA
IsPathSharedW
GetNetResourceFromLocalPathA
GetLocalPathFromNetResourceA

kernel32

VirtualQueryEx
GetComputerNameA
QueryDosDeviceA
IsBadWritePtr
GetProcAddress
VirtualProtectEx
GetPrivateProfileSectionA
SetFileAttributesA
LoadLibraryA
EncodePointer
MoveFileA
FindResourceA
GetModuleFileNameA
SetCurrentDirectoryA
GetEnvironmentVariableA
FileTimeToLocalFileTime
DecodeSystemPointer
OpenMutexA
ConnectNamedPipe
FileTimeToSystemTime
lstrcmpA
IsBadStringPtrA

shell32

DragQueryPoint
StrChrA
ShellAboutA
SHChangeNotify
SHGetDiskFreeSpaceA
SHGetDataFromIDListA
DuplicateIcon
SHFileOperationA
SHGetDesktopFolder
FindExecutableA
SHCreateShellItem

Sections

.code
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 802KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1f8d6add7fffeca1655834f6b3cd521e

Headers

DLL Characteristics

File Characteristics

Imports

uxtheme

dsprop

ntshrui

kernel32

shell32

Sections

.code Size: 15KB - Virtual size: 15KB

.rsrc Size: 802KB - Virtual size: 2.2MB

.code
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 802KB - Virtual size: 2.2MB