3d3c619ae743f3b3409bdb5d0acdf626aa655244b140c455229af39b78ea3d01

Sharing

Copy URL

Twitter E-mail

General

Target

3d3c619ae743f3b3409bdb5d0acdf626aa655244b140c455229af39b78ea3d01
Size

83KB
MD5

6f2339a8cd0cd0c1f5b45e18fc3133d3
SHA1

910ee3005bf00b8967891db00c0ce96dd0dd221f
SHA256

3d3c619ae743f3b3409bdb5d0acdf626aa655244b140c455229af39b78ea3d01
SHA512

0b832a5e6031a1282e7478d0a06966adbec167c7ce822e21a86a5769138558e02b54f26f4c1d1f6b923a0801a6d49e266a68b1c22bc10c9b5d95e93614891784
SSDEEP

1536:GyQB5ee9+Q718pLJ2g0hSTFO5bsChTmPwuIg/XSo0/L3Lg/K:GyQB5nfapl0CFwbdTAwLOCo0DLgS

Score

N/A

Malware Config

Signatures

Files

3d3c619ae743f3b3409bdb5d0acdf626aa655244b140c455229af39b78ea3d01
.exe windows x86

b130333d3b05bdb05a83687bbbe66c91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
__p__commode
atexit
fopen
_initterm
__p___initenv
strstr
wcslen
strrchr
_adjust_fdiv
memcpy
malloc
sprintf
calloc
_XcptFilter
free
_exit
__p__fmode
_except_handler3
__getmainargs
strlen
__set_app_type
_controlfp
_cexit

kernel32

GlobalUnlock
GetDateFormatA
GetProcessHeap
GetLocalTime
SystemTimeToFileTime
LCMapStringW
VirtualProtectEx
GetCommandLineW
GetTimeZoneInformation
GetModuleHandleW
GlobalLock
CompareStringA
SetFileAttributesW
GlobalHandle
SetEnvironmentVariableA
OpenProcess
GetProcAddress
RtlUnwind

advapi32

RegCreateKeyA
RegQueryValueExA
RegEnumValueW
OpenProcessToken
SetSecurityDescriptorDacl
CloseServiceHandle
LookupPrivilegeValueA
FreeSid
OpenSCManagerW
CopySid
AdjustTokenPrivileges
InitializeSecurityDescriptor
RegCreateKeyExW
RegQueryValueExW
CryptAcquireContextA
SetSecurityDescriptorGroup
RegDeleteKeyA
RegQueryInfoKeyA
RegEnumKeyW

gdi32

CreateHatchBrush
LPtoDP
LineTo
FillRgn
GetBkColor
GetSystemPaletteEntries
EnumFontFamiliesExA
GetDIBColorTable

user32

SetClassLongA
SetPropA
ShowWindow
UpdateWindow
EnumThreadWindows
GetClientRect
GetPropA
IsWindow
GetClassNameA
GetSystemMetrics
GetSysColor
GetFocus
GetParent
GetMenuItemID
IsZoomed

comctl32

ImageList_DragLeave
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_AddMasked
InitializeFlatSB
DestroyPropertySheetPage
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DragEnter
CreatePropertySheetPageA
ImageList_Replace
CreateStatusWindowA

ole32

CreateItemMoniker
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoGetClassObject
ReleaseStgMedium
RegisterDragDrop
CLSIDFromString
StringFromCLSID

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b130333d3b05bdb05a83687bbbe66c91

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

gdi32

user32

comctl32

ole32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 61KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 61KB

.rsrc
Size: 2KB - Virtual size: 2KB