543f00bebd9117a9ecc3cbfec4bbd4b5e6a9b59791649ee812bee028ec03d6f2

Sharing

Copy URL

Twitter E-mail

General

Target

543f00bebd9117a9ecc3cbfec4bbd4b5e6a9b59791649ee812bee028ec03d6f2
Size

129KB
MD5

7746a9437ea5bcb9d9d4c7131ba07381
SHA1

e4960abe7cdf884861cef026045b0f76fca1c49a
SHA256

543f00bebd9117a9ecc3cbfec4bbd4b5e6a9b59791649ee812bee028ec03d6f2
SHA512

55024059ecda3253cf2dd1d1dc7a64ddb5ab70b98ee8efba9ba4b441b88f0329218bbae48059d08e31ade13c2fa171df4301533c615d9971018ac58efb842d20
SSDEEP

3072:nVydYqZcmBr4jI6PXAVwaYbu/RL4YHDPz6DRCDC:MKqZcU8YcM4YHzWo

Score

N/A

Malware Config

Signatures

Files

543f00bebd9117a9ecc3cbfec4bbd4b5e6a9b59791649ee812bee028ec03d6f2
.exe windows x86

f50b5d7692afc91fa49aadfae840eb81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetOEMCP
VirtualProtect
GetEnvironmentVariableA
CopyFileA
GetStartupInfoA
GetModuleHandleA
InterlockedExchange
SetStdHandle

msvcrt

__p__commode
fgetc
_kbhit
__setusermatherr
__CxxFrameHandler
__getmainargs
__set_app_type
__p__fmode
__mb_cur_max
_except_handler3
_adjust_fdiv
_XcptFilter
_ftol
strncat
sprintf
localtime
_beginthreadex
_acmdln
_cexit
strcspn
log
strtoul
wcsncmp
exit
_initterm

user32

ScreenToClient
LoadBitmapA
GetScrollRange
GetCursorPos
GetIconInfo
SetPropA
GetScrollPos
RedrawWindow
IsZoomed
IsDialogMessageA
TrackPopupMenu

ole32

CoTaskMemRealloc
OleUninitialize
CoSetProxyBlanket
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
CoInitializeSecurity
CoGetMalloc
StgCreateDocfileOnILockBytes

gdi32

PolylineTo
SetWorldTransform
GetRgnBox
SetColorAdjustment
GetTextExtentPoint32W

comctl32

ImageList_DragLeave
ImageList_LoadImageW
CreatePropertySheetPageA
InitCommonControls
CreateStatusWindowA
ImageList_DragShowNolock
ImageList_Destroy

advapi32

RegEnumKeyExW
RegDeleteKeyW
DeleteService
RegQueryValueExW
GetTokenInformation

version

GetFileVersionInfoSizeA
VerFindFileW

shell32

Shell_NotifyIconW
SHGetFolderLocation
SHGetDiskFreeSpaceExW
DragAcceptFiles
SHGetFolderPathW
ExtractIconA
SHGetFileInfo
ExtractAssociatedIconW

oleaut32

LoadTypeLib
SafeArrayGetUBound
SafeArrayGetElement
SysAllocStringLen
SysReAllocStringLen
SafeArrayRedim
SysAllocStringByteLen

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f50b5d7692afc91fa49aadfae840eb81

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

gdi32

comctl32

advapi32

version

shell32

oleaut32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 17KB - Virtual size: 16KB