b3e20c8f70a1aa98266ae5c7438e7695b33b33db1d137f8a5f97701432dba2f5

Sharing

Copy URL

Twitter E-mail

General

Target

b3e20c8f70a1aa98266ae5c7438e7695b33b33db1d137f8a5f97701432dba2f5
Size

111KB
MD5

64f3f6aa493845bac31a8751c025ee07
SHA1

66cf1b79a51fa46c24a3f17e972b561bdb521cd0
SHA256

b3e20c8f70a1aa98266ae5c7438e7695b33b33db1d137f8a5f97701432dba2f5
SHA512

bb6f2c36e244aaaf06a0e9ae9014a1a0153908e48b1a7d1d7b6214dd6ede4cdc6ed8a729e8e77659fa7057f6d6b86e1eab4dcf7d87e9a950bd1be9a3ad376e98
SSDEEP

1536:xUszcr2yoOtmPmS36N5w8gU9osXaiPYYCWX2xczlknuEqlxA7/1SHCRf4sq9O:xD04grz2e7oWX22SPaGJoCt80

Score

N/A

Malware Config

Signatures

Files

b3e20c8f70a1aa98266ae5c7438e7695b33b33db1d137f8a5f97701432dba2f5
.exe windows x86

795dcaf1f6cb04d37718dc3298c32277

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
lstrcmpiW
GetNumberFormatA
lstrcpynA
SystemTimeToFileTime
GetExitCodeProcess
InterlockedCompareExchange
VirtualAlloc
GetSystemTime
GetACP
GetDriveTypeA
WideCharToMultiByte
CreateProcessA
DeviceIoControl
VirtualProtectEx
DeleteFileA
SetHandleCount
GlobalUnlock
GetModuleHandleW

msvcrt

_except_handler3
calloc
sqrt
strncpy
getenv
_adjust_fdiv
memcpy
_controlfp
__p___initenv
__p__fmode
free
_exit
_XcptFilter
fopen
__set_app_type
__setusermatherr
__p__commode
_initterm
_iob
__getmainargs

comdlg32

GetOpenFileNameA

user32

DefWindowProcA
UnregisterClassA
CreateMenu
SetTimer
ShowOwnedPopups
SetClipboardData
DialogBoxParamA
ClientToScreen
GetClientRect
IsDialogMessageA
LoadIconA
SetDlgItemTextA
RegisterClassA
GetCapture
GetIconInfo

ole32

OleUninitialize
RevokeDragDrop
CoRegisterClassObject
CoCreateInstance
OleSetClipboard
CoInitialize
OleFlushClipboard
CoUninitialize
CoTaskMemRealloc
CoFreeUnusedLibraries
CreateStreamOnHGlobal
ReleaseStgMedium

gdi32

StartDocW
CreateEllipticRgn
StrokeAndFillPath
SaveDC
StartDocA
GetOutlineTextMetricsA
CopyMetaFileW
CreateDCA
GetMetaFileBitsEx
OffsetWindowOrgEx
RestoreDC
GetStockObject
SetColorAdjustment

comctl32

ImageList_DragLeave
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_SetImageCount
InitializeFlatSB
ImageList_LoadImageA
ImageList_Remove
CreatePropertySheetPageA
ImageList_Create
PropertySheetA
CreatePropertySheetPageW

advapi32

InitiateSystemShutdownA
OpenSCManagerW
RegOpenKeyA
CryptHashData
AdjustTokenPrivileges
OpenProcessToken
CheckTokenMembership
LookupPrivilegeValueA
InitializeSecurityDescriptor
RegQueryValueA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

795dcaf1f6cb04d37718dc3298c32277

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

ole32

gdi32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 22KB - Virtual size: 96KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 22KB - Virtual size: 96KB