067768df3a5775d2a2c2e897b733fdc9321f1c6ff690df0ba3358d3fee082510

Sharing

Copy URL Twitter E-mail

General

Target

067768df3a5775d2a2c2e897b733fdc9321f1c6ff690df0ba3358d3fee082510
Size

87KB
MD5

7b23f7ec2f2107f443afdf3927f1005b
SHA1

73766f745170f05cb53d2d8b72fd0f7cff165720
SHA256

067768df3a5775d2a2c2e897b733fdc9321f1c6ff690df0ba3358d3fee082510
SHA512

e1ec3c6804623fe6db3d73dca035c206a12d8392bff5bd29b9ec2c58a56ee086d3112a8ca0d81bdad04516e9029ec6d7853d33cf04049f764456c7a33137fce7
SSDEEP

1536:ZAgfyMFUcGUdBV46UJz0rj6BqMm+wfzd6c6ycGZTCQ7hQy:GgfyM9GkBG6VU7dwh6ny3+Ly

Score

N/A

Malware Config

Signatures

Files

067768df3a5775d2a2c2e897b733fdc9321f1c6ff690df0ba3358d3fee082510
.exe windows x86

6843c1d6bb96bde6b3971ba5e57de00f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetStdHandle
GetDiskFreeSpaceA
InterlockedIncrement
GetModuleHandleW
GetCommandLineW
GetProcessHeap
OpenProcess
IsBadWritePtr
WideCharToMultiByte
IsBadCodePtr
GetCurrentDirectoryA
CreateProcessA
VirtualProtectEx
GetTempPathW
GetFileAttributesW
GetSystemInfo
MoveFileA
GetProcAddress

msvcrt

getenv
_adjust_fdiv
calloc
_exit
_XcptFilter
_stricmp
__setusermatherr
fputs
__getmainargs
strchr
fclose
_except_handler3
__set_app_type
atoi
__p__commode
signal
fprintf
free
__p__fmode
_controlfp
_initterm
__p___initenv

ole32

StgOpenStorageOnILockBytes
ProgIDFromCLSID
CoRegisterMessageFilter
RevokeDragDrop
CreateILockBytesOnHGlobal
OleFlushClipboard
CreateStreamOnHGlobal
OleRun
OleInitialize
OleDraw
CoFreeUnusedLibraries
ReleaseStgMedium
OleIsCurrentClipboard
CoLoadLibrary
StgCreateDocfileOnILockBytes

comctl32

PropertySheetW
ImageList_DragShowNolock
InitCommonControls
ImageList_EndDrag
ImageList_LoadImageW
ImageList_Create
CreateToolbarEx
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Remove

user32

GetSystemMetrics
InsertMenuA
SetTimer
GetWindowThreadProcessId
SetWindowLongA
EqualRect
GetDesktopWindow
EnableWindow
SetPropA
RegisterClipboardFormatA
GetDC
GetWindowLongA
GetCursorPos
GetActiveWindow
UnregisterClassA
GetWindowPlacement

gdi32

PolyDraw
GetCharacterPlacementA
PolylineTo
GetViewportOrgEx
EnumFontFamiliesW
PatBlt
GetTextExtentPoint32A
IntersectClipRect
CreateFontW
GetTextExtentPoint32W
CreatePatternBrush
PlayEnhMetaFile
StrokePath

advapi32

CryptReleaseContext
RegEnumValueW
CryptCreateHash
OpenServiceA
RegDeleteValueA
InitializeSecurityDescriptor
RegEnumKeyW
RegDeleteKeyA
RegDeleteKeyW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6843c1d6bb96bde6b3971ba5e57de00f

Headers

File Characteristics

Imports

kernel32

msvcrt

ole32

comctl32

user32

gdi32

advapi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 62KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 62KB

.rsrc
Size: 7KB - Virtual size: 7KB