77f92a03f36d01f2d5168a21abf52ec4819b72ea0a14f4f7efd8965a6ba9dc8f

General

Target

77f92a03f36d01f2d5168a21abf52ec4819b72ea0a14f4f7efd8965a6ba9dc8f
Size

845KB
MD5

706d8bea380850c162e97f22be2dac00
SHA1

70f1fe1f3e1aa7d48268bce4832beecda56de2e0
SHA256

77f92a03f36d01f2d5168a21abf52ec4819b72ea0a14f4f7efd8965a6ba9dc8f
SHA512

aa431ae64ea0dc445522071c194faf6ee021ee92a7d95e2296baf55f0a8d3be333a3a738a2aa8ea72bb150faccdd87f33bc176a5335c13178a4289b69b62a0ee
SSDEEP

12288:QGm8+BnGtVLU+YHKJEBYuSjuYYJFrm1EK6WNy6mtwuLfhN2hspifzhq4gsi+hOdh:Q3pHKYfS1YJh+ybtJ32spifzvq+88XQ

Score

N/A

Malware Config

Signatures

Files

77f92a03f36d01f2d5168a21abf52ec4819b72ea0a14f4f7efd8965a6ba9dc8f
.exe windows x86

381878634633c668e52f4629b8a84e6a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msasn1

ASN1BERDecBool
ASN1BERDecNull
ASN1BERDecCharString
ASN1BERDecEoid

shell32

ExtractIconA
ShellAboutA
DuplicateIcon
DllUnregisterServer
SHFileOperationA
DragQueryFileA
SHGetFileInfoA
SHGetDataFromIDListA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
DragAcceptFiles

kernel32

PurgeComm
InitializeCriticalSection
GetCurrentDirectoryA
GetModuleHandleA
GetLogicalDrives
GetDiskFreeSpaceA
lstrcpynA
InterlockedDecrement
GetEnvironmentVariableA
CreatePipe
GetComputerNameA
DisconnectNamedPipe
GetProcessHeap
GetModuleFileNameA
QueryDosDeviceA
DeviceIoControl
CreateSemaphoreA
GetProcAddress
GetFullPathNameA
FileTimeToSystemTime
CreateMutexA
CreateNamedPipeA
FileTimeToLocalFileTime
ConnectNamedPipe
SetCurrentDirectoryA
CloseHandle

dsprop

MsgBox
FindSheet

crypt32

CertCloseStore
CryptFindOIDInfo
CryptEnumOIDInfo
CertControlStore
CertFindChainInStore
CertGetNameStringA
CertFreeCRLContext
CertNameToStrA
CertCompareCertificate
CertDuplicateCRLContext
CertFindExtension
CertSaveStore
CertCreateCRLContext
CertFindAttribute
CertFindCRLInStore

ntshrui

IsFolderPrivateForUser
GetNetResourceFromLocalPathA
GetLocalPathFromNetResourceA
IsPathSharedW

Sections

.text
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 797KB - Virtual size: 797KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

381878634633c668e52f4629b8a84e6a

Headers

File Characteristics

Imports

msasn1

shell32

kernel32

dsprop

crypt32

ntshrui

Sections

.text Size: 42KB - Virtual size: 42KB

.data Size: 797KB - Virtual size: 797KB

.idata Size: 5KB - Virtual size: 1.4MB

.text
Size: 42KB - Virtual size: 42KB

.data
Size: 797KB - Virtual size: 797KB

.idata
Size: 5KB - Virtual size: 1.4MB