679398627ab9efdb820d5b325351f05ee7f876c1e074a2fbf857582832ef5f31

Sharing

Copy URL

Twitter E-mail

General

Target

679398627ab9efdb820d5b325351f05ee7f876c1e074a2fbf857582832ef5f31
Size

98KB
MD5

70faa1f6ec751cc54281f32b1c7e7d43
SHA1

2c7afdcf873a3f824d9518078a324cfbfe5c1c81
SHA256

679398627ab9efdb820d5b325351f05ee7f876c1e074a2fbf857582832ef5f31
SHA512

db8f2e5ce07818c13ff74b1103a9d7b6cef1fa7228d46f759d25e37c9ce6fd3cb49c796b3fb8c4385aaf0cde6162538901021a803ca5681b09c6a2d24fab25ce
SSDEEP

1536:JgItYb+W/qp5Tre6cZWiLdKUjrtOiepmPy/qBpeMWSjBsdHPMRXXACgY7KasZJ81:AY5ngzjrtQmPy/YpDnBkHPaXQBvNm9

Score

N/A

Malware Config

Signatures

Files

679398627ab9efdb820d5b325351f05ee7f876c1e074a2fbf857582832ef5f31
.exe windows x86

4d5fbcf471a26c40368868f3ed7bfa94

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
fputs
_adjust_fdiv
_write
strncmp
__setusermatherr
__p__commode
calloc
__set_app_type
_initterm
abort
_cexit
_exit
_except_handler3
_acmdln
fopen
strlen
__p__fmode
signal
free

kernel32

GetStringTypeA
lstrcmpiW
WaitForSingleObject
GetDateFormatA
ReadFile
DuplicateHandle
GetStartupInfoA
WideCharToMultiByte
GetModuleHandleA
LoadLibraryExW
SetFileTime
FreeLibrary
GetProcAddress
WriteFile
GetUserDefaultLangID

advapi32

CryptCreateHash
CopySid
AdjustTokenPrivileges
SetSecurityDescriptorGroup
RegCreateKeyExW
InitiateSystemShutdownA
RegCreateKeyA
RegOpenKeyW
OpenServiceW
InitializeSecurityDescriptor

gdi32

DeleteMetaFile
CloseMetaFile
GetTextExtentPoint32W
EndPage
CreateBitmap
SetEnhMetaFileBits
GetTextExtentPoint32A
GetBkColor
CreatePen
GetPaletteEntries
CopyMetaFileA
GetTextMetricsW
LineDDA
MoveToEx
GetDeviceCaps
SelectClipPath
SetWorldTransform
SetViewportOrgEx
SetGraphicsMode
DeleteDC
GetStretchBltMode
GetEnhMetaFileDescriptionA
PatBlt
GetDIBColorTable
CreateEllipticRgn

oleaut32

VariantClear
SafeArrayPtrOfIndex
VariantInit
VariantCopyInd
SafeArrayGetElement
SafeArrayCreate
SysFreeString
LoadTypeLib
SysReAllocStringLen
SafeArrayGetUBound
SysStringByteLen

ole32

CLSIDFromString
OleInitialize
RegisterDragDrop
ReleaseStgMedium
CoGetInterfaceAndReleaseStream
CoUninitialize
CoCreateInstance
CoCreateGuid
CoGetClassObject
OleDraw
StgOpenStorageOnILockBytes
IIDFromString
OleSetMenuDescriptor

user32

RedrawWindow
GetWindowThreadProcessId
GetSysColor
RegisterWindowMessageA
IntersectRect
CreatePopupMenu
IsZoomed

comctl32

CreatePropertySheetPageW
ImageList_Replace
CreateStatusWindowA
ImageList_Destroy
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_GetImageCount
ImageList_Draw

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d5fbcf471a26c40368868f3ed7bfa94

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

gdi32

oleaut32

ole32

user32

comctl32

Sections

.text Size: 56KB - Virtual size: 55KB

.data Size: 25KB - Virtual size: 24KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 56KB - Virtual size: 55KB

.data
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 16KB - Virtual size: 15KB