0abfe5a531b6edfcace460906550e3ef4ac0f256c9a7034b855df8ed4fc23858

Sharing

Copy URL Twitter E-mail

General

Target

0abfe5a531b6edfcace460906550e3ef4ac0f256c9a7034b855df8ed4fc23858
Size

98KB
MD5

67b1765b1b7883f91b87adfb94acf8f4
SHA1

a36bc0d855ae07936f30cdeb775c9f16e106caa3
SHA256

0abfe5a531b6edfcace460906550e3ef4ac0f256c9a7034b855df8ed4fc23858
SHA512

4fce55df504b69ac6549f2f965c903ce436048f014540f3c830cba9dc21ebea07a6e1c6a2df52890565b5da5cf7786da067c98032f6dbe2981a954092ae2a406
SSDEEP

1536:dMcmeVQdqeFFyRPZTWCSGACL52iTKiIZKpy/jtxInH5fTR1rAmv+dvo/aVA7kDYB:dMcmu4ARppACswIrjmVFtAmm+kA3pe9M

Score

N/A

Malware Config

Signatures

Files

0abfe5a531b6edfcace460906550e3ef4ac0f256c9a7034b855df8ed4fc23858
.exe windows x86

0883b3ec76b4decb0b173b6dd23782ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_snprintf
calloc
__setusermatherr
strrchr
__dllonexit
free
_adjust_fdiv
_acmdln
sqrt
_except_handler3
__set_app_type
__getmainargs
strncpy
__p__environ
__p__commode
__p__fmode
fread
_initterm
_exit
_setmode

comdlg32

GetOpenFileNameA

kernel32

WaitForMultipleObjects
lstrlenA
GetNumberFormatA
lstrcpynA
IsValidCodePage
GetTempFileNameA
RemoveDirectoryA
OpenProcess
GetTempPathA
GetStringTypeA
IsBadReadPtr
GetModuleFileNameA
VirtualProtect
GetStartupInfoA

user32

OpenClipboard
ClientToScreen
CharLowerA
EnableMenuItem
EnumWindows
AdjustWindowRectEx
LoadBitmapA
CallWindowProcA
CharNextA
GetKeyboardType
DrawEdge
GetSysColor
ShowOwnedPopups
SetDlgItemTextA

gdi32

CreateFontIndirectW
SetViewportExtEx
SetStretchBltMode
LineTo
OffsetClipRgn
Pie
CreateEllipticRgn
StartDocW
GetWindowExtEx
SetTextCharacterExtra
ExtSelectClipRgn
ScaleWindowExtEx
GetObjectType
PtVisible
GetObjectA

advapi32

AllocateAndInitializeSid
RegDeleteValueW
OpenServiceW
CryptCreateHash
CryptAcquireContextA
OpenThreadToken
DeregisterEventSource
GetUserNameA
RegSetValueExW
RegCreateKeyExA
LookupPrivilegeValueA
RegCreateKeyExW
RegFlushKey

ole32

OleSetClipboard
CoGetInterfaceAndReleaseStream
CoUninitialize
OleIsCurrentClipboard
CoRegisterMessageFilter
CoGetMalloc
GetRunningObjectTable
ReleaseStgMedium
IsEqualGUID
CoRevokeClassObject
CoTaskMemRealloc

comctl32

CreatePropertySheetPageW
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_AddMasked
PropertySheetW
ImageList_GetImageCount
ImageList_EndDrag
InitializeFlatSB
ImageList_Remove
ImageList_GetIconSize
ImageList_Read
ImageList_DrawEx
ImageList_BeginDrag
ImageList_LoadImageA
ImageList_Write

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0883b3ec76b4decb0b173b6dd23782ba

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

ole32

comctl32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 18KB - Virtual size: 18KB