efba4dcf3b6ddc732c267284050de390abf782cf4e0a83d232d1407c24e1ed97

Sharing

Copy URL Twitter E-mail

General

Target

efba4dcf3b6ddc732c267284050de390abf782cf4e0a83d232d1407c24e1ed97
Size

92KB
MD5

60f20b25bdfeeab8fd8bad719e9c2110
SHA1

fb3e2ca177b55169d718d9f08b37adad52aaff48
SHA256

efba4dcf3b6ddc732c267284050de390abf782cf4e0a83d232d1407c24e1ed97
SHA512

876da3e923d9635793e30883294a2878e4beb4488b7dc91de6aa0478f738bd62d7ba21b4ce0451d8286c8c668e5e2a34bd4f7df6d34b5f72969e8579e31f1fb0
SSDEEP

1536:wR5CoyeDfLV0QiiaTxTyvkAxCzuFBORI44oyJ++YnW0Ndbcig3DmjdV7B1:uMsiialyBr4McHZNdbXg3Dmvb

Score

N/A

Malware Config

Signatures

Files

efba4dcf3b6ddc732c267284050de390abf782cf4e0a83d232d1407c24e1ed97
.exe windows x86

2cffb8fee543412008d9821f3ded8c41

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

__dllonexit
__p__fmode
signal
calloc
strcmp
memset
__set_app_type
_initterm
_XcptFilter
atan
__getmainargs
printf
_except_handler3
_exit
free
_acmdln
__p__commode
_iob
strncmp
_adjust_fdiv
__setusermatherr
fopen
exit

kernel32

FreeEnvironmentStringsW
GetTempPathA
GetModuleHandleA
UnhandledExceptionFilter
GetCPInfo
GetLocaleInfoA
ExpandEnvironmentStringsA
GetStartupInfoA
InterlockedCompareExchange

oleaut32

VariantCopy
SafeArrayPtrOfIndex
SafeArrayGetElement
SysAllocStringByteLen
SysReAllocStringLen
SafeArrayGetUBound

comctl32

ImageList_GetIcon
ImageList_DrawEx
ImageList_Write
ImageList_SetDragCursorImage
CreateToolbarEx

gdi32

GetClipBox
ScaleViewportExtEx
OffsetWindowOrgEx
Escape
GetPaletteEntries
DeleteDC
SetStretchBltMode
GetTextAlign
RoundRect
CreateRoundRectRgn

shell32

SHAddToRecentDocs
FindExecutableW
SHGetFolderPathA
SHGetFolderLocation

user32

DeleteMenu
SetMenu
LoadBitmapA
SendDlgItemMessageA
ScrollWindow
IsIconic

advapi32

CryptAcquireContextA
DeleteService
RegEnumKeyW

ole32

OleIsCurrentClipboard
CoInitializeEx
CoRegisterClassObject
CoUninitialize
OleFlushClipboard
StgCreateDocfileOnILockBytes

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2cffb8fee543412008d9821f3ded8c41

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

oleaut32

comctl32

gdi32

shell32

user32

advapi32

ole32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 60KB

.rsrc Size: 31KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 60KB

.rsrc
Size: 31KB - Virtual size: 100KB