7d10b35ff1b2231d5ff92b1ce1b86bb1ae5ee6131de512fde838931198c6beb5

Sharing

Copy URL Twitter E-mail

General

Target

7d10b35ff1b2231d5ff92b1ce1b86bb1ae5ee6131de512fde838931198c6beb5
Size

94KB
MD5

7b57ae635cc4b59d77e79123be0aa84f
SHA1

fa5602a0daf9bde6fae8c499271874b6055b9cab
SHA256

7d10b35ff1b2231d5ff92b1ce1b86bb1ae5ee6131de512fde838931198c6beb5
SHA512

cce946c27e05c785b7b1c3da9251918718ff543bb38fcf828b65984c090d54c272e2cc70eb157330f891b115843a342094a7038d8909ea44e59b77b1a83acdc8
SSDEEP

1536:X1LeHvMOqYXnVO4/IYrW6AQSDQvOqD7w1d8YoaV0/6gn+q1ZYZRqW4rPWy4+6o:FKUOFXnw4/IDHsvOqD7kb7V0y1sYagyL

Score

N/A

Malware Config

Signatures

Files

7d10b35ff1b2231d5ff92b1ce1b86bb1ae5ee6131de512fde838931198c6beb5
.exe windows x86

b014dc7c9e6fa9693f80f6eecbcbd1a0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

ntdll

RtlUnwind

samlib

SamRemoveMultipleMembersFromAlias

kernel32

GetCurrentProcess
InterlockedCompareExchange
lstrlenW
GetCommandLineA
GetProcAddress
CompareFileTime
Sleep
GetCurrentThreadId
DeleteCriticalSection
EnterCriticalSection
TerminateProcess
FileTimeToSystemTime
HeapReAlloc
VirtualAlloc
UnhandledExceptionFilter
HeapAlloc
QueryPerformanceCounter
LeaveCriticalSection
GetCurrentProcessId
HeapFree
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetTickCount
WinExec
GetDateFormatA
InitializeCriticalSection
SetProcessWorkingSetSize
lstrcmpiA

crypt32

CryptEnumOIDInfo

wintrust

WintrustAddActionID
WTHelperCertIsSelfSigned
WTHelperGetProvSignerFromChain
WinVerifyTrust
WintrustRemoveActionID
WTHelperGetProvCertFromChain

gdi32

GetTextExtentPointA
GetTextMetricsW
GetTextExtentPointW
DeleteObject
GetTextMetricsA
SelectObject

user32

ShowWindow
SetDlgItemTextA
SendMessageW
SetWindowLongA
ReleaseDC
SetCursor
DialogBoxIndirectParamW
GetSysColor
LoadCursorA
SetFocus
CreateWindowExW
GetDC
SendDlgItemMessageA
CallMsgFilterA
GetWindowLongA
LoadImageA
WinHelpA
MessageBeep
EndDialog
GetDlgItemTextA
LoadStringA
GetParent
EnableWindow
GetWindowRect
DialogBoxIndirectParamA
LoadBitmapA
DialogBoxParamW
DialogBoxParamA
SendMessageA

shlwapi

StrCatBuffA
wnsprintfA
StrCatBuffW
StrCpyNW

Sections

.text
Size: 1024B - Virtual size: 964B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 73KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b014dc7c9e6fa9693f80f6eecbcbd1a0

Headers

DLL Characteristics

File Characteristics

Imports

shell32

ntdll

samlib

kernel32

crypt32

wintrust

gdi32

user32

shlwapi

Sections

.text Size: 1024B - Virtual size: 964B

.data Size: 15KB - Virtual size: 40KB

.idata Size: 2KB - Virtual size: 2KB

.rdata Size: 512B - Virtual size: 212B

.rsrc Size: 73KB - Virtual size: 76KB

.text
Size: 1024B - Virtual size: 964B

.data
Size: 15KB - Virtual size: 40KB

.idata
Size: 2KB - Virtual size: 2KB

.rdata
Size: 512B - Virtual size: 212B

.rsrc
Size: 73KB - Virtual size: 76KB