2c565b8c719a345d7c048026fa6b78d195c1f10c05b7abd157b77590eae24535

General

Target

2c565b8c719a345d7c048026fa6b78d195c1f10c05b7abd157b77590eae24535
Size

163KB
MD5

674a46676f3a02c66c138d0846de1fe5
SHA1

159e25354eb4ba81837b86ef88060eefc9d30655
SHA256

2c565b8c719a345d7c048026fa6b78d195c1f10c05b7abd157b77590eae24535
SHA512

f3da46c229c346fe91aa04512fddc3d29b8fc7c5365421d9facb5d9c848f1ab01ebeb26da82f69e0274cf1dac0b4b628ab71d2dfa627250057f501f1a7109ef4
SSDEEP

3072:6u2ic/SnBS3qaE8ZU1afDqRrdiz74fezjd0Hzp2DiUkldAg2U6W4:6/iuSkJZwdu7Aez5ofA

Score

N/A

Malware Config

Signatures

Files

2c565b8c719a345d7c048026fa6b78d195c1f10c05b7abd157b77590eae24535
.exe windows x86

ebdd023de2303f38c84d0d6af99fa58e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

kernel32

GetVersionExA
GetPrivateProfileSectionW
lstrcmpW
GetLastError
LoadLibraryW
GetCurrentProcess
lstrcmpiW
GetModuleHandleW
FindNextFileW
FindFirstFileW
SetFileAttributesW

user32

GetMessagePos
GetMessageTime
UnhookWindowsHookEx
DestroyWindow
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DispatchMessageW
GetForegroundWindow

gdi32

DeleteObject

advapi32

RegCreateKeyA
RegCloseKey
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA

gdiplus

GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipCloneImage
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits

ole32

CoFreeUnusedLibraries
CoSetProxyBlanket
CoDisconnectObject
CoTaskMemAlloc
CreateStreamOnHGlobal
StringFromGUID2
CoUninitialize
CoInitialize
CoCreateInstance
CoTaskMemFree

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ebdd023de2303f38c84d0d6af99fa58e

Headers

File Characteristics

Imports

shell32

kernel32

user32

gdi32

advapi32

gdiplus

ole32

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 64KB - Virtual size: 63KB

.reloc Size: 512B - Virtual size: 334B

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 64KB - Virtual size: 63KB

.reloc
Size: 512B - Virtual size: 334B