cca56e2735591d310704cbdc9e3908dd7449f5e82fa92fd7ef1fc925113c6af9

Sharing

Copy URL Twitter E-mail

General

Target

cca56e2735591d310704cbdc9e3908dd7449f5e82fa92fd7ef1fc925113c6af9
Size

88KB
MD5

66b04f5e35b7a5bd4c64b43047ffa96d
SHA1

a56a62ef8f7b22091b537a8041eaf08f0038017a
SHA256

cca56e2735591d310704cbdc9e3908dd7449f5e82fa92fd7ef1fc925113c6af9
SHA512

e27b2c6448186f35949c362bbd85e2ac97a1929ff628187b5fedeb259b60981c253dbea1ac97274d6bf6f5d825dad7fbabc6aae29dbd7ebba87321e435a2f6d3
SSDEEP

1536:2sDf2fUJd8a1RhW/GRF7ePQHOYjleJNhnEUVkjyvZz9Ds/wb/yhnmKwQZivOR8L:xDf2f4RMGRxe8VlcNhPVkjwz9WwmhHxM

Score

N/A

Malware Config

Signatures

Files

cca56e2735591d310704cbdc9e3908dd7449f5e82fa92fd7ef1fc925113c6af9
.exe windows x86

e015aea635eba2f02b331efed4b76343

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
calloc
_initterm
memset
_except_handler3
strcpy
__p__fmode
strcmp
_adjust_fdiv
_errno
__getmainargs
realloc
free
__p__commode
_acmdln
_iob
exit
wcslen
sqrt
__set_app_type
_exit
memcpy
strstr
__setusermatherr

kernel32

GetModuleHandleW
RaiseException
GetStartupInfoA
GlobalReAlloc
FreeLibrary
GetACP
WaitForMultipleObjects
ReadFile
FlushFileBuffers
FormatMessageA
GetFileType
GetVersion
SystemTimeToFileTime
LocalFileTimeToFileTime
GetCurrentProcessId
FreeEnvironmentStringsA
WriteFile

user32

GetMessageA
LoadStringA
KillTimer
WindowFromPoint
GetClientRect
CreateWindowExA
IsWindowEnabled
GetLastActivePopup
EmptyClipboard
CreateMenu

oleaut32

SafeArrayRedim
SysReAllocStringLen
GetActiveObject
SysStringLen
SafeArrayCreate
SysFreeString
GetErrorInfo

comctl32

ImageList_DrawEx
ImageList_Write
CreatePropertySheetPageA
ImageList_Replace
ImageList_SetBkColor
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_GetIconSize
PropertySheetW
ImageList_DragShowNolock
ImageList_Destroy
ImageList_Read
ImageList_LoadImageW

ole32

CLSIDFromProgID
StringFromIID
CoRegisterClassObject
DoDragDrop
CoFreeUnusedLibraries
CoTaskMemRealloc
IsEqualGUID
ProgIDFromCLSID
CoCreateInstance
StringFromCLSID
OleSetClipboard
OleIsCurrentClipboard

gdi32

GetCharWidthW
ExtCreatePen
CreateCompatibleDC
PolylineTo
CreateFontA
CreateDIBitmap
GetEnhMetaFilePaletteEntries
EndPage
LPtoDP
GetCharWidthA
GetEnhMetaFileHeader
GetClipRgn

advapi32

RegOpenKeyExA
OpenThreadToken
CryptGenRandom
RegOpenKeyA
RegDeleteKeyA
GetUserNameA
RegEnumKeyExA
IsValidSid
RegDeleteKeyW
RegCloseKey
RevertToSelf
InitializeAcl

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e015aea635eba2f02b331efed4b76343

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

oleaut32

comctl32

ole32

gdi32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 61KB - Virtual size: 60KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 61KB - Virtual size: 60KB

.rsrc
Size: 3KB - Virtual size: 2KB