036b5c466111cefdb37980e4d6e91cfb3b3ec77d0b101e59152fcfc811b9f875

Sharing

Copy URL Twitter E-mail

General

Target

036b5c466111cefdb37980e4d6e91cfb3b3ec77d0b101e59152fcfc811b9f875
Size

142KB
MD5

65a1aa6ca98129f1c781530ed3a510c0
SHA1

0a778eb9c2e48cbe64c6da9c9f38ace0ba2ca25b
SHA256

036b5c466111cefdb37980e4d6e91cfb3b3ec77d0b101e59152fcfc811b9f875
SHA512

9f2329067d20334e97fc90882e86cb0fb6bcbe4c7bbe33566bc7c0f4c950e798deb3373407f9c4a09b0de9ba6de972ee2ddcb512fd6a4ff11cf810d1715623ae
SSDEEP

3072:gGe87uhGLRUp+1JUqsLtSTFXWFpe62U1nSInm:z7uQ6Nnb

Score

N/A

Malware Config

Signatures

Files

036b5c466111cefdb37980e4d6e91cfb3b3ec77d0b101e59152fcfc811b9f875
.exe windows x86

463dc63eda85998f2e1cdc8df7aaa843

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetStartupInfoA
LCMapStringW
GetFullPathNameA
GetModuleHandleA
CompareStringA

msvcrt

_acmdln
__p__fmode
_setmode
log
_dup2
_initterm
exit
pow
printf
_filbuf
wcstoul
__setusermatherr
_XcptFilter
_except_handler3
_adjust_fdiv
__p__commode
__set_app_type
__p___initenv
_mbsrchr
floor
_filelengthi64
__getmainargs

user32

LoadStringA
GetWindow
RegisterClipboardFormatA
ClientToScreen
PtInRect
GetCursorPos
IsRectEmpty

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerInstallFileW
VerLanguageNameA
VerInstallFileA
VerQueryValueA

oleaut32

VariantCopy
SafeArrayPtrOfIndex
SafeArrayCreate
SysStringLen
SysAllocStringLen
SetErrorInfo

advapi32

RegQueryValueExA
DeregisterEventSource
GetTokenInformation
FreeSid
RegQueryValueA
RegDeleteValueA
RegEnumKeyExA
AdjustTokenPrivileges
RegDeleteKeyW

shell32

ExtractAssociatedIconW
SHGetFolderPathA
SHGetDiskFreeSpaceExW
SHGetMalloc
SHAddToRecentDocs
DragQueryFileW
SHBrowseForFolderA

comctl32

ImageList_Destroy
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_SetImageCount
DestroyPropertySheetPage
ImageList_Remove
ImageList_Write
InitCommonControls
ImageList_SetIconSize
ImageList_GetBkColor

ole32

StgOpenStorageOnILockBytes
CoInitialize
CreateItemMoniker
IIDFromString
CoTaskMemFree
CreateStreamOnHGlobal
CoSetProxyBlanket
CoCreateInstance

gdi32

GetDIBColorTable
ExcludeClipRect
CreateMetaFileW
UnrealizeObject
GetWinMetaFileBits
CreateRoundRectRgn

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

463dc63eda85998f2e1cdc8df7aaa843

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

version

oleaut32

advapi32

shell32

comctl32

ole32

gdi32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 29KB - Virtual size: 112KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 29KB - Virtual size: 112KB