f20f85a2e772b1efa7dfb8c13720433fb57da1d394499616a22283ca6440de23

General

Target

f20f85a2e772b1efa7dfb8c13720433fb57da1d394499616a22283ca6440de23
Size

192KB
MD5

5742965c5ed0740e91a829cc8449f799
SHA1

88b595bf5b508c68c53b702fe4e174e209146a75
SHA256

f20f85a2e772b1efa7dfb8c13720433fb57da1d394499616a22283ca6440de23
SHA512

9bc68f3c653d20e092b4443c8ee255068a7f12347375fa0d92ba79c43f566871d6073614b1ea7df940010cbc1ceeae357a5344ac692624b33c3d5be94525018b
SSDEEP

3072:C/N8DeV+S1wTvTBAPfyUd/yZ2t8EeoS0Gwnh993SP6xalJlsR/jCMdX/p6B+C0bQ:q4eVfKTvtC/yE2EfS0tXsTuRzdx6Br0s

Score

N/A

Malware Config

Signatures

Files

f20f85a2e772b1efa7dfb8c13720433fb57da1d394499616a22283ca6440de23
.exe windows x86

d74c040955331876ee03b49aa2408c1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

rpcrt4

RpcBindingFromStringBindingA
RpcStringBindingComposeA
RpcBindingSetAuthInfoA
NdrClientCall
RpcStringFreeA

comdlg32

GetFileTitleA

comctl32

ImageList_Create
ImageList_DrawEx
ImageList_GetIconSize
ImageList_Add
ImageList_Destroy

user32

IsClipboardFormatAvailable
ChildWindowFromPoint
RegisterClassW
DefWindowProcW
DrawEdge
EmptyClipboard
SetScrollRange
SetWindowPos
DestroyCursor
SetClipboardData
DestroyIcon
ClipCursor
CallNextHookEx
MonitorFromWindow
GetSysColorBrush
UnhookWindowsHookEx
ToAscii
SetWindowsHookExW
WinHelpW
GetSysColor

shlwapi

PathIsURLW
PathCanonicalizeW
PathIsRelativeW
PathStripToRootW
PathIsRootW
PathCombineW

kernel32

CreateFiber
GetUserDefaultLangID
GetVersionExW
GetSystemTime
FileTimeToSystemTime
GetProfileStringW
VerLanguageNameW
WriteFileGather
SearchPathW
GetFileAttributesA
FlushFileBuffers
EnumResourceNamesW
GetVolumeInformationW
UnlockFile
LockFile
LocalAlloc
FlushFileBuffers
GetFileTime
FileTimeToLocalFileTime
IsDBCSLeadByte
SetEndOfFile
GetFileType
FindResourceExA
CompareStringW
GetSystemDirectoryW

Sections

.text
Size: 170KB - Virtual size: 169KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lib
Size: 512B - Virtual size: 220KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d74c040955331876ee03b49aa2408c1a

Headers

File Characteristics

Imports

rpcrt4

comdlg32

comctl32

user32

shlwapi

kernel32

Sections

.text Size: 170KB - Virtual size: 169KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 18KB - Virtual size: 18KB

.lib Size: 512B - Virtual size: 220KB

.text
Size: 170KB - Virtual size: 169KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 18KB - Virtual size: 18KB

.lib
Size: 512B - Virtual size: 220KB