18be50552527e2b559d94e46c02411b9e3cbf904cb009dc9c3d3001e01f5a0dd

General

Target

18be50552527e2b559d94e46c02411b9e3cbf904cb009dc9c3d3001e01f5a0dd
Size

156KB
MD5

6cd8f2f7aab71e3b182abc5ad0a14ca4
SHA1

51411335d07b5af4295eda8f45782fa7f90dd1e5
SHA256

18be50552527e2b559d94e46c02411b9e3cbf904cb009dc9c3d3001e01f5a0dd
SHA512

4a317693d1c4384c16ee564f37547edfce4a36f5114bc44d7cebc2d12f5098edab0308e4e839b9d678a65654bf6650e268ce823ee94105fb89eb3fe95cd961d2
SSDEEP

3072:rOe2URyVpQ1+s0L0WpKmIo5rIZ4g9CcC0zO0uTuMn7pclhM/:rNyfQ1H0L0OLCZj+0y0uTuMn7ua

Score

N/A

Malware Config

Signatures

Files

18be50552527e2b559d94e46c02411b9e3cbf904cb009dc9c3d3001e01f5a0dd
.exe windows x86

f4392b1bc0ea15e166e9b61e07aed513

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathIsUNCW

kernel32

GetVersionExA
GetPrivateProfileStringW
GetFileAttributesW
GetModuleFileNameW
LoadLibraryW
SuspendThread
WaitForMultipleObjects
CreateEventW
FindNextFileW
OutputDebugStringW

user32

CharPrevW
CharNextW
LoadStringW
MessageBoxW
IsDlgButtonChecked
SetFocus
GetDlgItem
CheckRadioButton
DialogBoxParamW
GetDlgItemTextW
MessageBoxExW

gdi32

DeleteObject

advapi32

RegCreateKeyA
RegCloseKey
RegSetValueA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA

gdiplus

GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipCreateBitmapFromFile
GdipBitmapLockBits
GdipCloneImage
GdipDrawImageI
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits

ole32

CoTaskMemAlloc
CoIsHandlerConnected
CoGetDefaultContext
CoTestCancel
CoInitialize
CoTaskMemFree

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 336B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4392b1bc0ea15e166e9b61e07aed513

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

advapi32

gdiplus

ole32

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 20KB - Virtual size: 20KB

.reloc Size: 512B - Virtual size: 336B

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 20KB - Virtual size: 20KB

.reloc
Size: 512B - Virtual size: 336B