a0439c8bdbb4517b54b3e1601e842c4f38dcb7e99cf596b4e528cd51ad01e810

Sharing

Copy URL Twitter E-mail

General

Target

a0439c8bdbb4517b54b3e1601e842c4f38dcb7e99cf596b4e528cd51ad01e810
Size

126KB
MD5

6bf63291ae18e891b13439b6c9fce270
SHA1

e6d2367a9ecf2115046e41e6e6226a91a205ff85
SHA256

a0439c8bdbb4517b54b3e1601e842c4f38dcb7e99cf596b4e528cd51ad01e810
SHA512

34b75b454e0a92c18ae9ebca64705b29c470888d60f5c3f27f3688efd32f2036ccaea94315f57ec21fdcce5b3905414214e59f1e81c1fb7c8084c633fe32371f
SSDEEP

3072:EmrNHFk74WAbhGS+Zi8hj5fEd56FcgCbCLa6y:LeluhGm8YeF7CbC6

Score

N/A

Malware Config

Signatures

Files

a0439c8bdbb4517b54b3e1601e842c4f38dcb7e99cf596b4e528cd51ad01e810
.exe windows x86

3d17892ae0256607c64fe625101febe5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
VirtualProtect
QueryPerformanceCounter
lstrcmpiA
GetStartupInfoA
MulDiv
GetCPInfo
SystemTimeToFileTime
GlobalLock
GetACP
GetFileAttributesA
WaitForMultipleObjects
GetEnvironmentStrings
GetDriveTypeA
GlobalFree
GetUserDefaultLangID
GetModuleHandleW
FileTimeToSystemTime

msvcrt

_initterm
pow
__set_app_type
wcsrchr
_XcptFilter
__p__commode
__setusermatherr
_adjust_fdiv
_acmdln
fgets
log
_except_handler3
exit
setlocale
toupper
getenv
_controlfp
strcmp
__p__fmode
__getmainargs

oleaut32

SafeArrayRedim
CreateErrorInfo
VariantInit
VariantClear
GetErrorInfo
VariantCopy
SysAllocStringByteLen
VariantCopyInd
LoadTypeLib
SysStringLen
SafeArrayPtrOfIndex
SafeArrayPutElement
SetErrorInfo

comctl32

ImageList_GetBkColor
ImageList_Write
CreatePropertySheetPageA
ImageList_DragShowNolock
ImageList_DragLeave
DestroyPropertySheetPage
ImageList_DrawEx

gdi32

LineDDA
CreateHatchBrush
SetBkColor
PtVisible
RectInRegion
GetWinMetaFileBits
CreatePolygonRgn
Chord
StrokePath
CreateICW
GetViewportOrgEx

shell32

SHGetSpecialFolderPathW
SHBrowseForFolderA
SHBindToParent
SHAppBarMessage
SHGetFileInfo
SHGetFolderPathA
SHBrowseForFolder
ShellExecuteA

user32

LoadStringA
RegisterWindowMessageA
CloseClipboard
GetClassInfoA
FrameRect
SetActiveWindow
GetSysColor
SetMenu
SetClassLongA
CharNextA

version

GetFileVersionInfoSizeW
VerLanguageNameA
GetFileVersionInfoA
GetFileVersionInfoW

ole32

OleRun
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeEx
IsAccelerator
IsEqualGUID
IIDFromString
CoRegisterClassObject

advapi32

OpenThreadToken
CopySid
CryptDestroyHash
RevertToSelf
LookupPrivilegeValueW
SetSecurityDescriptorGroup
CryptCreateHash
CryptHashData

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3d17892ae0256607c64fe625101febe5

Headers

File Characteristics

Imports

kernel32

msvcrt

oleaut32

comctl32

gdi32

shell32

user32

version

ole32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 16KB - Virtual size: 40KB

.rsrc Size: 91KB - Virtual size: 184KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 16KB - Virtual size: 40KB

.rsrc
Size: 91KB - Virtual size: 184KB