ecd822380213769f24586266965988e4ec08645941e9e2d2822b7ff14405a992

Sharing

Copy URL Twitter E-mail

General

Target

ecd822380213769f24586266965988e4ec08645941e9e2d2822b7ff14405a992
Size

166KB
MD5

6a71bbb74dfdc66f98f93df3851930d0
SHA1

8064afd5112ecf9007d9f8d9805a5237d6ce398e
SHA256

ecd822380213769f24586266965988e4ec08645941e9e2d2822b7ff14405a992
SHA512

3293ab3957b2ec881f97df3255b067d82a4a50c756ee8c999a1b6d67bd3d606efc7a425933c2a1e65501da77051d821a51e5abfb930e515179860556ed2402a5
SSDEEP

3072:0RyJi7eeYjCNPxhNDnGOb+ahXNqJohePnq45L84dGiaRLqAU:hJi7eeYjmHNDGOb+asEwv5LYiaRLqAU

Score

N/A

Malware Config

Signatures

Files

ecd822380213769f24586266965988e4ec08645941e9e2d2822b7ff14405a992
.exe windows x86

87cd7ecbaf4218804d547341fdf8c88e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
SetFileAttributesA
FindClose
GetPrivateProfileStringA
LocalAlloc
WritePrivateProfileStringA
GetSystemInfo
GetModuleFileNameA
GetPrivateProfileSectionA
CompareStringA
GetUserDefaultUILanguage
GetVersionExA
CloseHandle
GetVersion
LocalFree
DeleteFileA
FreeResource
MapViewOfFile
UnmapViewOfFile
_llseek
FreeLibrary
LoadResource
_lwrite
GlobalLock
_lclose
GetTickCount
EnumResourceTypesA
FindResourceExA
GlobalAlloc
SizeofResource
GetProcAddress
GlobalUnlock
SetLastError
GlobalFree
GetTempFileNameA
CreateFileMappingA
MoveFileA
LockResource
_lread
LoadLibraryExA
EnumResourceNamesA
GetFileInformationByHandle
GetTempPathA
GetCurrentDirectoryA
GetSystemTime
WideCharToMultiByte
MultiByteToWideChar
lstrcmpiA
GetLastError
FindFirstFileA
CreateDirectoryA
GetShortPathNameA
ReadFile
CreateProcessA
GetExitCodeProcess
GetFileAttributesA
GetPrivateProfileIntA
WriteFile
FormatMessageA
GetModuleHandleW
WritePrivateProfileSectionA
lstrcmpA
Sleep
InterlockedExchange
InterlockedCompareExchange
GetStartupInfoA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetModuleHandleA
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
IsDBCSLeadByte
CreateFileA
EnumResourceLanguagesA
GetFullPathNameA

gdi32

GetStockObject
GetDeviceCaps
CreateFontIndirectA
DeleteObject
GetObjectA
CreateFontIndirectW

user32

CheckDlgButton
GetWindowRect
SystemParametersInfoW
CharPrevA
IsDlgButtonChecked
CheckRadioButton
GetDlgItemTextA
SetDlgItemTextA
SendDlgItemMessageA
MsgWaitForMultipleObjects
LoadStringA
GetParent
MessageBeep
CharNextA
SetFocus
SendMessageA
GetDC
SetWindowLongA
MessageBoxA
GetWindowLongA
PeekMessageA
ReleaseDC
GetDlgItem
PostMessageA
DispatchMessageA
GetSystemMetrics
EnableWindow
CallWindowProcA
ShowWindow

msvcrt

_controlfp
?terminate@@YAXXZ
_except_handler4_common
_initterm
__setusermatherr
_ismbblead
_acmdln
__p__fmode
_cexit
_exit
exit
__set_app_type
__getmainargs
_amsg_exit
__p__commode
_XcptFilter
wcsncmp
mbstowcs
_splitpath_s
strtoul
toupper
memcpy_s
_vsnprintf
strtok
strchr
malloc
free
_itoa_s
_itoa
memcpy
memset

comctl32

CreatePropertySheetPageA
PropertySheetA
DestroyPropertySheetPage

comdlg32

GetOpenFileNameA
GetSaveFileNameA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

imagehlp

CheckSumMappedFile

advapi32

RegOpenKeyExA
RegCloseKey
RegQueryValueExA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

87cd7ecbaf4218804d547341fdf8c88e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

msvcrt

comctl32

comdlg32

version

imagehlp

advapi32

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 3KB - Virtual size: 11KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 86KB - Virtual size: 85KB

.reloc Size: 24KB - Virtual size: 24KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 3KB - Virtual size: 11KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 86KB - Virtual size: 85KB

.reloc
Size: 24KB - Virtual size: 24KB