bce8c030a2beb514e987c6d9220e29a5ddf23085699d07da191d3346066e0528

Sharing

Copy URL Twitter E-mail

General

Target

bce8c030a2beb514e987c6d9220e29a5ddf23085699d07da191d3346066e0528
Size

140KB
MD5

6c9c850123e8b6f5642b5f083a99f59b
SHA1

cd8f3491ada6e18ad798d11006f911a0c06d9379
SHA256

bce8c030a2beb514e987c6d9220e29a5ddf23085699d07da191d3346066e0528
SHA512

d639dada5d22273d069a8bec2c817bd390bea2b6d5f5e0043d072e2a7e85cc5fdf26bf21025e52b81b36ee53628e8f7bc321dfe513e68c298c0679ad8117a92a
SSDEEP

3072:ix7e4yDp52bAuw9X2rAhctw+8IR/o5JCA+q:47/yDp54Auwlh9IQIA

Score

N/A

Malware Config

Signatures

Files

bce8c030a2beb514e987c6d9220e29a5ddf23085699d07da191d3346066e0528
.exe windows x86

b80a36e2ed8e11a1ec83bd857d892596

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Read
ImageList_GetBkColor
ImageList_Add
ImageList_DrawEx
ImageList_Write

shlwapi

SHSetValueA
SHGetValueA

kernel32

lstrcmpA
FindFirstFileA
VirtualAllocEx
CreateEventA
HeapFree
GetLocalTime
GetFileAttributesA
GetDiskFreeSpaceA
GetOEMCP
GetThreadLocale
GetDateFormatA
EnumCalendarInfoA
GetCurrentProcess
GetVersion
lstrcmpiA
GetProcAddress
LocalFree
FreeLibrary
VirtualAlloc
VirtualQuery
GlobalAddAtomA
LocalReAlloc
GetFullPathNameA
SetEvent
GetTempPathA
GetCurrentProcessId
DeleteFileA
GetStringTypeW
GetLastError
FindResourceA
ExitProcess
GetCurrentThreadId
FreeResource
HeapDestroy
GetCommandLineA
CreateThread
LoadLibraryA
GetTickCount
GetFileType
GetCommandLineW
SetErrorMode
CreateFileA
CompareStringA
LockResource
LoadLibraryExA
GetCPInfo
FindClose
LoadResource
LocalAlloc
GlobalFindAtomA
SetFilePointer
FormatMessageA
VirtualFree
lstrlenW

user32

MoveWindow
GetMenu
IsCharUpperA
IsCharLowerA
IsDlgButtonChecked
LoadIconA
DrawAnimatedRects
MsgWaitForMultipleObjects

Exports

Exports

_tWvVN5

Sections

CODE
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 11KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jkdata
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b80a36e2ed8e11a1ec83bd857d892596

Headers

File Characteristics

Imports

comctl32

shlwapi

kernel32

user32

Exports

Exports

Sections

CODE Size: 17KB - Virtual size: 16KB

DATA Size: 11KB - Virtual size: 114KB

.jkdata Size: 106KB - Virtual size: 106KB

.edata Size: 2KB - Virtual size: 1KB

.idata Size: 512B - Virtual size: 72B

.rsrc Size: 1KB - Virtual size: 1KB

CODE
Size: 17KB - Virtual size: 16KB

DATA
Size: 11KB - Virtual size: 114KB

.jkdata
Size: 106KB - Virtual size: 106KB

.edata
Size: 2KB - Virtual size: 1KB

.idata
Size: 512B - Virtual size: 72B

.rsrc
Size: 1KB - Virtual size: 1KB