b23420db21528608126f12b71377e13d3cb725ebe19199903c9a1f8efbdbd962

Sharing

Copy URL Twitter E-mail

General

Target

b23420db21528608126f12b71377e13d3cb725ebe19199903c9a1f8efbdbd962
Size

84KB
MD5

64eaa35dc5e3f9f3ae3c5834c44372b0
SHA1

fc4c4f1b2b78fc30beebc482f071ebb0c9148818
SHA256

b23420db21528608126f12b71377e13d3cb725ebe19199903c9a1f8efbdbd962
SHA512

dc7f0d857351102ad09a55db545c49b99f77833b5c33e2104dace21263a3679571c06bc2813963e25bb2f26f4d1c58da1b9b4c24f6a4e047ef9c487a74f2c477
SSDEEP

1536:KzqugJ5R7jcczulM797nJ5k6VQmTkkqP/7qyyLc/bZCW/RFuuxsDhV:Kmu8/GlM79LJ5kWa/7rSA8W5Fu6iV

Score

N/A

Malware Config

Signatures

Files

b23420db21528608126f12b71377e13d3cb725ebe19199903c9a1f8efbdbd962
.exe windows x86

a78eae5ba41fe2f196b4ecc39397074b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
free
strcmp
wcslen
strncpy
_exit
exit
memset
__p__commode
_initterm
__getmainargs
strlen
calloc
__dllonexit
__set_app_type
_cexit
_adjust_fdiv
_except_handler3
_acmdln
sqrt
__p__fmode
fread

kernel32

WriteFile
GetStartupInfoA
WideCharToMultiByte
GetModuleHandleW
IsBadCodePtr
RtlUnwind
SetFileAttributesA
GlobalLock
GetThreadLocale
GetStringTypeExA
GetEnvironmentVariableA
GetCommandLineA
SetHandleCount
FreeLibrary
SetThreadLocale
ReadFile
LocalFileTimeToFileTime

user32

CreateWindowExA
SetScrollRange
DefWindowProcA
LoadBitmapA
SetMenu
CreatePopupMenu
GetDC
BeginPaint
InflateRect
SetScrollPos

comctl32

ImageList_Remove
PropertySheetA
ImageList_GetBkColor
ImageList_EndDrag
ImageList_Draw
InitializeFlatSB
DestroyPropertySheetPage
CreatePropertySheetPageA

advapi32

RegDeleteValueW
RegSetValueExW
OpenSCManagerW
RegDeleteKeyA
RegEnumValueA
SetSecurityDescriptorOwner
OpenServiceA
RegOpenKeyExA
CryptCreateHash

ole32

CoCreateInstance
CoFreeUnusedLibraries
ProgIDFromCLSID
CoTaskMemRealloc
CoRegisterClassObject
CoReleaseMarshalData
CLSIDFromProgID
StgCreateDocfileOnILockBytes
OleSetClipboard
CoSetProxyBlanket

oleaut32

SetErrorInfo
LoadTypeLib
VariantClear
GetErrorInfo
SysAllocStringByteLen
SysStringLen
VariantInit
SafeArrayCreate
SafeArrayGetUBound
SysAllocStringLen
SysStringByteLen
SafeArrayPtrOfIndex

gdi32

SetViewportExtEx
SetEnhMetaFileBits
PatBlt
GetTextExtentPoint32W
LineDDA
StartPage
AddFontResourceA
EnumFontFamiliesExA
DeleteDC
GetViewportExtEx
GetObjectType
SetPixel
GdiFlush
CloseEnhMetaFile

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a78eae5ba41fe2f196b4ecc39397074b

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

comctl32

advapi32

ole32

oleaut32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 3KB - Virtual size: 2KB