79b81b8b7d3b71e825cffdb20dff8be6276dd310f2e79435bf4c0c33804d4223

Sharing

Copy URL Twitter E-mail

General

Target

79b81b8b7d3b71e825cffdb20dff8be6276dd310f2e79435bf4c0c33804d4223
Size

49KB
MD5

44abc82c6b43a97c3b751a4926addad2
SHA1

ac9883c6a4cdfb3a69d0945958506f65f9699c6c
SHA256

79b81b8b7d3b71e825cffdb20dff8be6276dd310f2e79435bf4c0c33804d4223
SHA512

6d85d8ec9480039ae6c1d3709b909bf08ff67b8a6074a4e640a64933d54e11b48c5fbc420015c831fc0a35e7c8fa81f87f0e46b23d4f2f823f163b2c7ac58009
SSDEEP

768:owgQsRrjrV02Rh/eElNrUGekVAz6ckrNbMOwOu5Z9RJCRk33Nc:o8sRr/VddNrokVE6ckrJMOju55JFG

Score

N/A

Malware Config

Signatures

Files

79b81b8b7d3b71e825cffdb20dff8be6276dd310f2e79435bf4c0c33804d4223
.exe windows x86

fecac452f053d18c8677512ff604d955

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

AddAccessAllowedAce
AllocateAndInitializeSid
FreeSid
GetLengthSid
InitializeAcl
InitializeSecurityDescriptor
RegQueryInfoKeyA
RegQueryValueExA
RegSetValueExA
SetSecurityDescriptorDacl

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

CloseHandle
CreateMutexA
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDriveTypeA
GetLastError
GetStringTypeExA
GetSystemTimeAsFileTime
GetWindowsDirectoryW
InitializeCriticalSection
InterlockedExchange
IsDBCSLeadByte
LeaveCriticalSection
LocalAlloc
LocalFree
MultiByteToWideChar
OpenMutexA
QueryPerformanceCounter
ReleaseMutex
RtlUnwind
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpyA
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA
lstrlenW

user32

CharNextA
CharPrevA
CheckDlgButton
CreateWindowExA
DefWindowProcA
EnableWindow
EndDialog
GetClassNameA
GetDesktopWindow
GetDlgItem
GetDlgItemTextA
GetTopWindow
GetWindow
GetWindowLongA
IsDlgButtonChecked
IsWindow
IsWindowVisible
LoadIconA
LoadStringA
MessageBoxA
PostMessageA
RegisterClassA
RegisterWindowMessageA
SendDlgItemMessageA
SendMessageA
SendMessageTimeoutA
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetWindowLongA
ShowWindow
WinHelpA
wsprintfA

gdi32

PolyPolygon

ole32

CLSIDFromString
CoCreateGuid
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
StringFromGUID2

shell32

SHGetDesktopFolder
SHGetMalloc
SHGetSpecialFolderLocation

Sections

.text
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fecac452f053d18c8677512ff604d955

Headers

File Characteristics

Imports

advapi32

version

kernel32

user32

gdi32

ole32

shell32

Sections

.text Size: 25KB - Virtual size: 24KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 12KB - Virtual size: 11KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 25KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 8KB - Virtual size: 7KB