2b725a2661319d6266abb2ba839ef512a9f58a08c29c1d26474e10a05b75c991

Sharing

Copy URL Twitter E-mail

General

Target

2b725a2661319d6266abb2ba839ef512a9f58a08c29c1d26474e10a05b75c991
Size

81KB
MD5

7a6433b00026470e1c72bd632ff79fc3
SHA1

8bf23b422e29c44ee994ad74f5acee9cb8ec2fc7
SHA256

2b725a2661319d6266abb2ba839ef512a9f58a08c29c1d26474e10a05b75c991
SHA512

58e01581f8bdcce84ad6c81d364bf77847452637bc44e9138349eefdb4f13781f437e27eea0b0bbc89275e02404826b4b3c1142f08b6fa5d8703ce375d406c33
SSDEEP

1536:Eni5Fkf2SPaqTTvsvdeFgvsM7Q+77sBvSq6L5Hb8cgtX1l8B6:EnijcnTvqggsv+XQ6LVby1l8Y

Score

N/A

Malware Config

Signatures

Files

2b725a2661319d6266abb2ba839ef512a9f58a08c29c1d26474e10a05b75c991
.exe windows x86

8724f1ae8531e937accb917adc3ce052

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
atoi
__set_app_type
_vsnprintf
_except_handler3
_adjust_fdiv
_exit
__p__commode
_initterm
abort
memmove
strchr
__p___initenv
memset
strrchr
_controlfp
calloc
__setusermatherr
_errno
__getmainargs
free
_XcptFilter
__p__fmode

kernel32

FreeEnvironmentStringsA
IsBadWritePtr
VirtualProtectEx
CompareStringA
QueryPerformanceCounter
SetStdHandle
IsBadCodePtr
GetProcAddress
GetCommandLineA
GetFileType
GetProcessHeap
IsDBCSLeadByte
GetEnvironmentStringsW
GetCommandLineW
ExitProcess
GetModuleHandleW
UnhandledExceptionFilter

user32

PostMessageA
GetWindowLongA
SetClipboardData
PtInRect
GetScrollPos
InsertMenuA
FrameRect
SetScrollRange
GetDesktopWindow
GetSystemMetrics
WindowFromPoint
SendMessageA
GetKeyState
DrawEdge
MessageBeep
GetActiveWindow
GetDC
GetCursorPos
IsDialogMessageA

comctl32

ImageList_DragLeave
CreatePropertySheetPageW
ImageList_Draw
ImageList_Write
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_GetImageInfo
CreateStatusWindowA
ImageList_ReplaceIcon

ole32

CoRevokeClassObject
CLSIDFromProgID
CoInitialize
PropVariantClear
CoCreateInstance
CoReleaseMarshalData
CoGetClassObject

advapi32

DeleteService
CloseServiceHandle
CopySid
RegCloseKey
RegQueryInfoKeyA
CryptDestroyHash
RegOpenKeyA
RegSetValueExW
LookupPrivilegeValueA
OpenServiceA
RegEnumKeyExA
RegCreateKeyExA
SetSecurityDescriptorDacl

gdi32

PtVisible
SetBrushOrgEx
GetDIBits
GetTextExtentPoint32A
GetRegionData
GetEnhMetaFileDescriptionA
FillRgn
SetWindowExtEx
CreateEnhMetaFileA
GetNearestPaletteIndex
GetSystemPaletteEntries
ExtFloodFill
BitBlt
GetDeviceCaps

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8724f1ae8531e937accb917adc3ce052

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

comctl32

ole32

advapi32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 62KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 62KB

.rsrc
Size: 3KB - Virtual size: 3KB