73fe8bf323be062ee154d3bba0f0c068014a9dab3a721d288fb449cb907826de

Sharing

Copy URL Twitter E-mail

General

Target

73fe8bf323be062ee154d3bba0f0c068014a9dab3a721d288fb449cb907826de
Size

173KB
MD5

449ba18e33f52716ebd017dc298cafd0
SHA1

a922942c5a840a29a164f09cabcadb9d5aec1aa3
SHA256

73fe8bf323be062ee154d3bba0f0c068014a9dab3a721d288fb449cb907826de
SHA512

907236653bc9642f4e4ad1b0597b2fb23658e61264c3ecb856ae6bd6c8e1666a6d8d874acb16807aab5d9f7a1c50b57de01c8b77ff1248e661880ae9c45bcdbb
SSDEEP

1536:yM6SwevDna5jc+WBOFoImPqoLHYc3zOFuiEPcv9AtghQ9G1wGJD:k1Ya5zgPqok+wE0Ah7K

Score

N/A

Malware Config

Signatures

Files

73fe8bf323be062ee154d3bba0f0c068014a9dab3a721d288fb449cb907826de
.exe windows x86

90c9f9d833c5bcb6f87cc0e41a53a9a5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
CreateFileA
lstrcatA
VirtualAlloc
GetModuleHandleA

user32

ReleaseDC
LoadStringA
GetDC
SystemParametersInfoW
wsprintfW
GetParent
PostMessageW
DialogBoxParamW
ShowWindow
SetWindowPos
ScreenToClient
GetWindowRect
GetWindowLongW
EnumChildWindows
LoadImageW
RedrawWindow
EnableWindow
EndDialog
GetDlgItem
SendMessageA
SetWindowLongW
LoadIconW
SetFocus
SendDlgItemMessageW
GetSysColor
InvalidateRect
SetWindowLongA
GetWindowLongA
IsWindow
CopyRect
GetClientRect
MessageBoxA
SetTimer
FindWindowW
RegisterClassExW
LoadStringW
MessageBoxW
CreateWindowExW
GetMessageW
TranslateMessage
DispatchMessageW
CharLowerW
SendMessageW
SetForegroundWindow
EnumThreadWindows
PostQuitMessage
DefWindowProcW
ExitWindowsEx
LoadCursorW

gdi32

GetStockObject

comdlg32

GetOpenFileNameW

advapi32

RegEnumKeyW
LookupPrivilegeValueW
OpenProcessToken
LookupAccountSidW
RegQueryValueW
RegEnumKeyExW
RegSetValueExW
RegOpenKeyW
RegOpenKeyExW
AdjustTokenPrivileges
RegQueryValueExW
RegCloseKey
AllocateAndInitializeSid
EqualSid
FreeSid
GetTokenInformation

shell32

SHGetFileInfoW
SHGetDesktopFolder
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetMalloc

ole32

OleUninitialize
OleInitialize
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CLSIDFromString
CoUninitialize

shlwapi

StrCmpIW
PathAppendW
PathIsRootW
StrCpyNW
StrCmpNIW
StrCatW
StrCpyW
PathCombineW
StrDupW
PathIsDirectoryW
SHGetValueW
StrChrIW
StrCmpW

Sections

.text
Size: 129KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90c9f9d833c5bcb6f87cc0e41a53a9a5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 129KB - Virtual size: 129KB

.rdata Size: 512B - Virtual size: 368B

.data Size: 24KB - Virtual size: 24KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 129KB - Virtual size: 129KB

.rdata
Size: 512B - Virtual size: 368B

.data
Size: 24KB - Virtual size: 24KB

.rsrc
Size: 17KB - Virtual size: 17KB