65ba358e44956ab057f9418b2bf75fa47290a7c847c8e7199ea23c0b359b1b89

Sharing

Copy URL Twitter E-mail

General

Target

65ba358e44956ab057f9418b2bf75fa47290a7c847c8e7199ea23c0b359b1b89
Size

189KB
MD5

66e76c863fde0f1a27d9203d655baaf4
SHA1

c3d18346c136ee944e9a4071f25b65db6eef2aa2
SHA256

65ba358e44956ab057f9418b2bf75fa47290a7c847c8e7199ea23c0b359b1b89
SHA512

f8fa71e67bd93e959101253bb2a168af1133244047a9666de18b1bba89e5aee659c349fccde06af948be25193ec71991c8e5bad8ef596428e277a684340c98aa
SSDEEP

1536:7VUksVEtJGcFXMxMuSl1WkDp3D4Taj2D4rZ6tWu8vp47epLEeZYgcmW7z2W8tMZZ:78EJWql1dDxyD4vugpDLE/msT8g

Score

N/A

Malware Config

Signatures

Files

65ba358e44956ab057f9418b2bf75fa47290a7c847c8e7199ea23c0b359b1b89
.exe windows x86

29fc2fe95649021ed39dae2f09fac3a6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MulDiv
GetStringTypeExA
GetFileAttributesW
InterlockedDecrement
DeviceIoControl
CreateProcessW
GetLocaleInfoA
GetWindowsDirectoryA
GetTempPathA
FreeEnvironmentStringsW
GetStdHandle
GetCurrentThreadId
GetNumberFormatA

msvcrt

__getmainargs
__setusermatherr
_XcptFilter
realloc
_cexit
memcpy
_iob
abort
_initterm
calloc
sinh
__set_app_type
_write
__p__fmode
getenv
__p__commode
_adjust_fdiv
_exit
free
__p___initenv
fflush
_except_handler3
_controlfp
memmove
fputs

comdlg32

GetOpenFileNameA

user32

GetTopWindow
CallNextHookEx
SetScrollPos
EnableMenuItem
GetWindowThreadProcessId
CreateWindowExA
PostMessageA
GetParent
DrawIconEx
UnhookWindowsHookEx
SetDlgItemTextA

ole32

OleUninitialize
CoLoadLibrary
PropVariantClear
OleGetClipboard
ReleaseStgMedium
CoGetMalloc
StgOpenStorageOnILockBytes
CoUninitialize
CreateBindCtx
OleSetMenuDescriptor

comctl32

CreateToolbarEx
PropertySheetA
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_DragShowNolock
ImageList_ReplaceIcon
InitializeFlatSB
CreateStatusWindowA
ImageList_Replace
ImageList_GetIcon
ImageList_Write
ImageList_EndDrag
InitCommonControls
ImageList_GetImageInfo
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_SetIconSize
ImageList_DragLeave

advapi32

RegOpenKeyExW
OpenServiceW
FreeSid
ControlService
InitializeSecurityDescriptor
OpenServiceA
InitiateSystemShutdownA
LookupPrivilegeValueW
CryptDestroyHash
RevertToSelf
RegQueryValueExW
RegQueryInfoKeyA

gdi32

SetDIBitsToDevice
Escape
GetCurrentPositionEx
CreateDIBPatternBrushPt
CreateDIBitmap
SetBkColor
ExtCreatePen
SetViewportExtEx
GetClipRgn
GetDIBColorTable
GetCharacterPlacementA
GetEnhMetaFileBits

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

29fc2fe95649021ed39dae2f09fac3a6

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

ole32

comctl32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 39KB

.rsrc Size: 112KB - Virtual size: 116KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 39KB

.rsrc
Size: 112KB - Virtual size: 116KB