9b644d5e602904f3a1dc19ae1636cea9f4392342353fd181babf364172b6d417

Sharing

Copy URL Twitter E-mail

General

Target

9b644d5e602904f3a1dc19ae1636cea9f4392342353fd181babf364172b6d417
Size

33KB
MD5

5dd551a546af2e36b56f87ee59299b03
SHA1

491b0c3f3922185ef0ac05a28c041c8834efbc9b
SHA256

9b644d5e602904f3a1dc19ae1636cea9f4392342353fd181babf364172b6d417
SHA512

12c5c173471f9636a8ba6fed855673bc7bfb7cda85a09a9682882da0a718d0e6f9f73d041c09181d1bff59fcdc1bb7713a5b067d8b15b61c4c0c450272c48731
SSDEEP

384:mnmfR60Y96Fps1Qhe/RBZzaRHqexvt+fijKj+IXnAFs9jCZofL3ICeKulrATj+Rk:AI/iQCRBlqVYf+V6AF6PfZuSH+Rk

Score

N/A

Malware Config

Signatures

Files

9b644d5e602904f3a1dc19ae1636cea9f4392342353fd181babf364172b6d417
.exe windows x86

48e5ce2c4dbd29a4e4098fa97ab3bdbb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHSetValueW
SHDeleteValueW

kernel32

GetTickCount
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
GetLastError
Sleep
OutputDebugStringA
SetProcessWorkingSetSize
GetCurrentProcess
GetShortPathNameW
GetCurrentProcessId
GetModuleHandleA
WritePrivateProfileStringW
GetPrivateProfileIntW
GetModuleFileNameW
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
CreateMutexW
GetStartupInfoA

user32

IsIconic
IsClipboardFormatAvailable
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
LoadImageW
RegisterWindowMessageW
DestroyIcon
FindWindowExW
SetTimer
KillTimer
ShowWindow
CopyRect
OffsetRect
FillRect
DrawFocusRect
DrawTextW
IsWindowVisible
LoadMenuW
GetCursorPos
GetSubMenu
SetForegroundWindow
TrackPopupMenu
PostMessageW
DestroyMenu
DialogBoxParamW
GetDlgItem
SendMessageW
GetDlgItemTextW
LoadStringW
SetWindowTextW
CheckDlgButton
IsDlgButtonChecked
EndDialog
keybd_event
SetDlgItemTextW
EmptyClipboard
OpenClipboard
EnumClipboardFormats
CloseClipboard
SetClipboardData
GetClipboardData
GetFocus

gdi32

GetCurrentObject
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
DeleteObject
BitBlt
SetBkMode
SetTextColor
GetStockObject
SelectObject

shell32

Shell_NotifyIconW

msvcrt

_acmdln
exit
_XcptFilter
_exit
_onexit
__getmainargs
?terminate@@YAXXZ
_except_handler3
towlower
_snwprintf
_vsnprintf
memmove
strstr
wcschr
wcsncmp
fgets
strncmp
wcsncpy
wcscmp
wcscpy
_wfopen
fseek
ftell
fread
fclose
_itow
wcscat
_controlfp
wcslen
??2@YAPAXI@Z
??3@YAXPAX@Z
__set_app_type
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__dllonexit

Sections

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48e5ce2c4dbd29a4e4098fa97ab3bdbb

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

shell32

msvcrt

Sections

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 7KB - Virtual size: 8KB

.rsrc Size: 21KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 7KB - Virtual size: 8KB

.rsrc
Size: 21KB - Virtual size: 24KB