4724c152df065b81fcd77af5ba4ed5fdb7dfa3535cef991502260dd875a683b7

Sharing

Copy URL Twitter E-mail

General

Target

4724c152df065b81fcd77af5ba4ed5fdb7dfa3535cef991502260dd875a683b7
Size

129KB
MD5

416ff2f7ecef1ec4d2c2912c682f8830
SHA1

98c50499a0a923cc8eef531271152783000c99e1
SHA256

4724c152df065b81fcd77af5ba4ed5fdb7dfa3535cef991502260dd875a683b7
SHA512

1aaf6becf07d61eda9b0f123fe3fc28a83bc3385044921e0aecf7032753605e7d2f1be7ed77ac8cd26a72e2111e6b762411abba9fbd106ffbd8f3f1e988af860
SSDEEP

3072:rZK398OM/FImuanxk58kDUfIArhfsyQ5Dfl6mlrWrj:VkRWFImuaZGUfD1sy2Dfl1lW

Score

N/A

Malware Config

Signatures

Files

4724c152df065b81fcd77af5ba4ed5fdb7dfa3535cef991502260dd875a683b7
.exe windows x86

e14e717a7727d4f30d97e90985eca021

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetTempPathA
CreateFileMappingA
GetStartupInfoA
GetTempPathW
GetModuleHandleA
GetLocaleInfoA
GlobalReAlloc
FileTimeToDosDateTime
GetFileType
RaiseException
VirtualProtect
lstrcmpA
GetSystemInfo

msvcrt

fopen
_close
ctime
_except_handler3
_initterm
_stricmp
log
fgetc
_acmdln
__set_app_type
atol
__p__fmode
_XcptFilter
__setusermatherr
_errno
_cexit
__getmainargs
exit
_vsnwprintf
__p__commode
_adjust_fdiv

user32

UpdateWindow
GetIconInfo
GetClassNameA
GetSubMenu
SetCursor
GetSystemMenu
SendDlgItemMessageA
SendMessageA
PeekMessageA
WindowFromPoint
DispatchMessageA

ole32

CoDisconnectObject
StgOpenStorage
CoInitializeEx
OleSetMenuDescriptor
CoInitializeSecurity
CoRegisterClassObject
RegisterDragDrop
ProgIDFromCLSID
OleGetClipboard
CoReleaseMarshalData
IsEqualGUID
CoCreateInstance

gdi32

CreateSolidBrush
EnumFontFamiliesExA
CreatePolygonRgn
AbortDoc
GetWinMetaFileBits
SelectPalette
GetNearestPaletteIndex
ScaleWindowExtEx
GetPaletteEntries

advapi32

InitiateSystemShutdownA
RegEnumValueW
RegDeleteKeyA
RegFlushKey
GetLengthSid
RegQueryInfoKeyA
RegEnumKeyExA
EqualSid
IsValidSid
GetUserNameA

oleaut32

SafeArrayGetElement
VariantClear
SysAllocStringLen
SysFreeString
CreateErrorInfo
VariantCopyInd
SysStringLen

shell32

SHGetSettings
ShellExecuteA
SHGetFolderLocation
ShellExecuteEx
SHAddToRecentDocs
ShellExecuteW
ShellExecuteExW
SHGetSpecialFolderPathA
SHGetPathFromIDList
SHBindToParent

version

VerLanguageNameA
GetFileVersionInfoSizeA
VerInstallFileA
VerQueryValueW
VerInstallFileW

comctl32

ImageList_GetBkColor
ImageList_SetImageCount
InitializeFlatSB
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_GetIcon

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e14e717a7727d4f30d97e90985eca021

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

gdi32

advapi32

oleaut32

shell32

version

comctl32

Sections

.text Size: 61KB - Virtual size: 61KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 18KB - Virtual size: 20KB

.text
Size: 61KB - Virtual size: 61KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 18KB - Virtual size: 20KB