5986af364feb650cfa5c4d73f3bf1741d9d31da4f5a91c7d5d0a95310fb06b99

Sharing

Copy URL Twitter E-mail

General

Target

5986af364feb650cfa5c4d73f3bf1741d9d31da4f5a91c7d5d0a95310fb06b99
Size

278KB
MD5

079dfd6a8d6f73fb21215019d95e4d50
SHA1

08232193663a8f0510a1b0a8418ee6980ab9ba6e
SHA256

5986af364feb650cfa5c4d73f3bf1741d9d31da4f5a91c7d5d0a95310fb06b99
SHA512

3a0fa9e51361fbf325f66c9641163f4c060c810fe78d8210e833380a4c7a097fba6a50ee76ca0ee5debe39f9919f78f0ebabd236a7c36c9d53cf8ff3f1625bbd
SSDEEP

6144:JYlFv8VJPNjRk1sj8x5IB9AKZBjylTuiB3R+HbdexJv2wQT9yw:0wNELgGKkqiz+HbExIjxyw

Score

N/A

Malware Config

Signatures

Files

5986af364feb650cfa5c4d73f3bf1741d9d31da4f5a91c7d5d0a95310fb06b99
.exe windows x86

9955e989fa9f122c012cd7b5b3610a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_except_handler3
_controlfp
__dllonexit
_onexit
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
__setusermatherr

user32

PostMessageA
GetDlgCtrlID
MessageBoxIndirectA
PaintDesktop
GetPropW
GetMenuItemID
GetDlgItem
DialogBoxParamW
IsWindowVisible
CharLowerBuffA
CreateCursor
IMPGetIMEA
GetClassLongA
GetWindowTextA
MapVirtualKeyW

kernel32

GetModuleHandleA
GetStartupInfoA
ExitProcess

ole32

HMENU_UserFree
OleCreateStaticFromData
HBITMAP_UserMarshal
GetConvertStg
HPALETTE_UserMarshal
CLSIDFromProgID
PropVariantClear
OleConvertOLESTREAMToIStorageEx
CoLoadLibrary
CoInitialize
OleCreateFromData
StgOpenStorage
CoRegisterClassObject
CoCreateGuid
CreateFileMoniker
SNB_UserUnmarshal
CoResumeClassObjects
DoDragDrop
CoGetCurrentProcess
IIDFromString
StgCreatePropStg
CoDisconnectObject
CreateClassMoniker
CoGetClassObject
OleInitialize
CoReleaseMarshalData
HGLOBAL_UserUnmarshal
RevokeDragDrop
OleCreateLinkToFile
OleSetContainedObject
CoFileTimeNow

oleaut32

VarCyFromUI4
VarParseNumFromStr
SafeArrayGetElemsize
VarCyFromBool
VarDecFromUI4
SafeArrayCreateVector
VarMul
VarR8Round
VarR8FromI1
VarI2FromCy
VarUI4FromR4
VarR4FromI4
VarXor
VarR4FromR8
SysAllocStringLen
VarBstrFromI4
VarBstrFromDec
VarI2FromR8
VarUI2FromUI4
VarR8FromR4
VarR4CmpR8
VarCyFromR8
VarDecAbs
BstrFromVector
GetAltMonthNames
VariantCopyInd
SystemTimeToVariantTime
BSTR_UserMarshal
VarNeg
VarI2FromDate
LPSAFEARRAY_UserUnmarshal
VarUI4FromUI1
VarBoolFromR8
VarBoolFromI4

msimg32

AlphaBlend
TransparentBlt

gdi32

GetRgnBox
CreateRectRgn
PatBlt
GetICMProfileW
GetWindowExtEx
CloseMetaFile
CopyMetaFileW
PolyTextOutA
GetPaletteEntries
CopyEnhMetaFileW
EndPath
FloodFill
ArcTo
GetGlyphOutlineA
ResetDCW
PlayEnhMetaFileRecord
GetCharWidthFloatA
GetRasterizerCaps
GetViewportExtEx

shell32

SHAppBarMessage
Shell_NotifyIconA
ShellExecuteExA
FindExecutableA

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9955e989fa9f122c012cd7b5b3610a7a

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

ole32

oleaut32

msimg32

gdi32

shell32

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 1.2MB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 1.2MB

.rsrc
Size: 4KB - Virtual size: 1KB