92887008a68547e6764f347e4563b6f3b332be6dc58887c00a30e955be364c38

Sharing

Copy URL Twitter E-mail

General

Target

92887008a68547e6764f347e4563b6f3b332be6dc58887c00a30e955be364c38
Size

168KB
MD5

00d867686923b027d8709ddfde57b7c6
SHA1

2cdeb340fc9a22fedcdf6d89395ebf7bb4ac1763
SHA256

92887008a68547e6764f347e4563b6f3b332be6dc58887c00a30e955be364c38
SHA512

ff9bebb9b9416a342ab6f0cca011eccee5397e4596e446c3dc7f64082ef56a25bb19415f7a54844a6b29d0d72441bfe3efed60658463e1921ad4f463b55d4a2e
SSDEEP

1536:W9N1/iXePdhQsAbdYtWZuQEs9rQL0xTTlk8QBF1Xvx+FAw4z8P2/dRLDTKXq:W9n/i5sAiGS0xvWdDNvmLP2XfT1

Score

N/A

Malware Config

Signatures

Files

92887008a68547e6764f347e4563b6f3b332be6dc58887c00a30e955be364c38
.exe windows x86

afaa59f74283bd652c37f2ca88734603

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

_acmdln
__p__fmode
__getmainargs
exit
printf
__set_app_type
_XcptFilter
__dllonexit
memcpy
_setmode
atan
__setusermatherr
__p__commode
_initterm
free
strcmp
_except_handler3
calloc
_adjust_fdiv
_exit
strcpy

kernel32

VirtualQuery
GlobalFree
GetLocalTime
GetStartupInfoA
GetUserDefaultLCID
lstrcpyA
GetStringTypeA

comctl32

ImageList_DragLeave
ImageList_GetIcon
InitializeFlatSB
ImageList_GetBkColor
ImageList_Read
ImageList_Add
ImageList_DrawEx
ImageList_Remove
ImageList_ReplaceIcon

oleaut32

SafeArrayCreate
SysFreeString
SafeArrayPutElement
LoadTypeLib
SysStringByteLen

advapi32

OpenServiceW
OpenSCManagerW
RegCloseKey
QueryServiceStatus
CryptHashData
RegSetValueExA

ole32

DoDragDrop
RegisterDragDrop
CreateILockBytesOnHGlobal
OleSetClipboard
IsAccelerator
CoInitialize
PropVariantClear
CoInitializeEx

gdi32

TextOutW
DeleteMetaFile
SetEnhMetaFileBits
GetStockObject
GetObjectW
ExtEscape

user32

SetForegroundWindow
OffsetRect
IsWindow
GetActiveWindow
GetWindowTextA
GetScrollRange
ReleaseCapture
EnumThreadWindows

shell32

DragQueryFileW
ShellExecuteExA
SHGetSpecialFolderPathW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

afaa59f74283bd652c37f2ca88734603

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

comctl32

oleaut32

advapi32

ole32

gdi32

user32

shell32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 60KB

.rsrc Size: 98KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 60KB

.rsrc
Size: 98KB - Virtual size: 100KB