4035b63bd2008180d541866ace1e906aeb87abb912d78f3b11b0c60ba426adcf

Sharing

Copy URL Twitter E-mail

General

Target

4035b63bd2008180d541866ace1e906aeb87abb912d78f3b11b0c60ba426adcf
Size

90KB
MD5

48d667a4b45132c2e9120792d00a0289
SHA1

95bd91d856b21bc4e5516cb5ffe5730402468444
SHA256

4035b63bd2008180d541866ace1e906aeb87abb912d78f3b11b0c60ba426adcf
SHA512

7a9ceb25830da091ca7b9fe2f1760ef0c8ec8fcea170988068ae30ec830b04d04832112701305b5fe6963e7f6cd6118344ce6870a88fc84070c8138efb11b854
SSDEEP

1536:kzLcTQzc4ixhDBSzlCcNWtjaYp9sKq3+1AGMdkEjhUqA+CEQF0nZdJ+IzQx:kzLckzcP2nCjpp9sVu1+a6+ghJQ

Score

N/A

Malware Config

Signatures

Files

4035b63bd2008180d541866ace1e906aeb87abb912d78f3b11b0c60ba426adcf
.exe windows x86

3dc47122106e2ac3376ca608ba2a9b93

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_adjust_fdiv
strncpy
exit
_write
__getmainargs
_acmdln
calloc
_setmode
__set_app_type
_errno
strlen
fputc
sqrt
free
_cexit
__p__fmode
_except_handler3
_initterm
_exit
abort
__setusermatherr
strcpy
_stricmp

comdlg32

GetOpenFileNameA

kernel32

GetEnvironmentVariableA
MulDiv
GetStartupInfoA
LCMapStringA
SetFileTime
GetNumberFormatA
RemoveDirectoryA
InterlockedIncrement
GetStdHandle
SetCurrentDirectoryA
CopyFileA

user32

FindWindowA
OpenClipboard
GetSysColor
SetClassLongA
ShowOwnedPopups
ReleaseDC
WinHelpA
SetDlgItemTextA
DrawIcon
CharNextA
SetPropA
DestroyIcon
SetForegroundWindow
WaitMessage
EndPaint

gdi32

SetTextCharacterExtra
BeginPath
GetNearestColor
ExtTextOutW
EnumFontFamiliesW
CreateICA
SelectClipPath
GetSystemPaletteEntries
TextOutW
CloseEnhMetaFile
GetCharWidthA
Chord
StartPage
CreateCompatibleBitmap
CopyEnhMetaFileA

advapi32

RegOpenKeyExW
InitiateSystemShutdownA
CryptCreateHash
RegDeleteKeyW
RegEnumKeyW
RegDeleteValueW
RegEnumValueW
OpenProcessToken
RegQueryValueA
GetUserNameA
CryptDestroyHash
RegEnumKeyA
RegCreateKeyA
CryptReleaseContext
InitializeAcl
DeleteService
RegCloseKey
CryptHashData
SetSecurityDescriptorDacl
OpenThreadToken
CopySid
RegSetValueExW

comctl32

InitCommonControls
ImageList_DrawEx
ImageList_Create
DestroyPropertySheetPage
CreateToolbarEx
ImageList_DragShowNolock
CreateStatusWindowA
ImageList_SetOverlayImage
ImageList_GetImageCount
ImageList_DragLeave
ImageList_ReplaceIcon
ImageList_Write

ole32

CoLoadLibrary
CoInitialize
CreateItemMoniker
IsEqualGUID
OleFlushClipboard
CoReleaseMarshalData
CreateILockBytesOnHGlobal

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dc47122106e2ac3376ca608ba2a9b93

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

comctl32

ole32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 18KB - Virtual size: 17KB