cfe889b41721705bf466de0de394e0357dc3874bb8ec2d3e75e99dc357d919d2

Sharing

Copy URL Twitter E-mail

General

Target

cfe889b41721705bf466de0de394e0357dc3874bb8ec2d3e75e99dc357d919d2
Size

97KB
MD5

62e37403e925bb3bc6dd7b3607b0f8bf
SHA1

ad3c8cfda0a588ef9fb36629768bba4125c36433
SHA256

cfe889b41721705bf466de0de394e0357dc3874bb8ec2d3e75e99dc357d919d2
SHA512

b1df494d9cd20e6dded3ab0d317f35e8f82851bd4dd0a8e0e3eb1ff0e128f0094915427a7fda4eb4a8981e9067aa64d5ae3f3b7a633be61108842fb770f6dd49
SSDEEP

1536:mcrusBlvmGBVYET0591wEBoaOO7bm2XGG2W20MWWIRDWUyc3I0:lusbn4J2az7jh2KM/IAUycd

Score

N/A

Malware Config

Signatures

Files

cfe889b41721705bf466de0de394e0357dc3874bb8ec2d3e75e99dc357d919d2
.exe windows x86

b0f7903dd510466e594197cfba7227ec

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_exit
__p__commode
sqrt
__p__fmode
free
_acmdln
__setusermatherr
strrchr
fread
atexit
__getmainargs
__set_app_type
atoi
_initterm
_adjust_fdiv
_except_handler3
_iob
calloc
fclose

comdlg32

GetOpenFileNameA

kernel32

GetThreadLocale
IsBadWritePtr
GetUserDefaultLCID
GetStartupInfoA
GetCommandLineA
GetNumberFormatA
GetWindowsDirectoryA
GetStringTypeW
CreateDirectoryA
lstrcpynA
GetVersion
SystemTimeToFileTime
LocalFree

user32

wsprintfA
WindowFromPoint
GetWindowRect
DispatchMessageA
IsChild
SendMessageA
GetSubMenu
SetRect
EqualRect
LoadStringA
TranslateMessage
GetSysColor
TrackPopupMenu
SetPropA
SetClipboardData
SetDlgItemTextA

ole32

OleInitialize
StgOpenStorage
IIDFromString
CoRegisterClassObject
CoInitializeEx
CoTaskMemFree
ReleaseStgMedium
ProgIDFromCLSID
CoRevokeClassObject
CreateILockBytesOnHGlobal
RegisterDragDrop
GetRunningObjectTable
CoGetClassObject
IsEqualGUID
StringFromGUID2
CLSIDFromString

comctl32

PropertySheetW
PropertySheetA
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_SetOverlayImage
ImageList_Read
ImageList_Write
ImageList_SetBkColor
CreatePropertySheetPageW
ImageList_Create
CreateStatusWindowA

advapi32

SetSecurityDescriptorGroup
RegEnumKeyW
OpenSCManagerA
RegFlushKey
OpenProcessToken
CryptCreateHash
InitiateSystemShutdownA
IsValidSid
RegOpenKeyA
RevertToSelf
RegQueryInfoKeyA
CryptDestroyHash
EqualSid
RegDeleteValueA
CloseServiceHandle
RegOpenKeyExA
InitializeAcl

gdi32

InvertRgn
Chord
CreateICW
GetEnhMetaFilePaletteEntries
GetObjectW
AddFontResourceA
SetMapperFlags
GetTextColor
StartDocW
ScaleWindowExtEx
ScaleViewportExtEx
PlayMetaFile
DeleteDC

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0f7903dd510466e594197cfba7227ec

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

comctl32

advapi32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 17KB - Virtual size: 17KB