b8a2605ba8d0b5df6e624bb202faf46853e0fd397da90f34857d913e0cb53798

Sharing

Copy URL Twitter E-mail

General

Target

b8a2605ba8d0b5df6e624bb202faf46853e0fd397da90f34857d913e0cb53798
Size

190KB
MD5

6b23c9a7312c02666f2b66de72fcddfb
SHA1

023893a8aa9d194e0621dec3b87798f97d895b2f
SHA256

b8a2605ba8d0b5df6e624bb202faf46853e0fd397da90f34857d913e0cb53798
SHA512

6cffac2db62d4809936673fa0ff623d43c92a6c1a77422f7156d6c06971f825cd1e7b38de399543a9d0a7d7319e0ae9d9a740bb8d4adc58187fe6f8733a84782
SSDEEP

3072:D1TrXAsBods4uNmATpotOf2D8FiT+HFbceBXlEOMy2CJkGTyRnB:JksyS4WcOf2oFiTsbdeBRn

Score

N/A

Malware Config

Signatures

Files

b8a2605ba8d0b5df6e624bb202faf46853e0fd397da90f34857d913e0cb53798
.exe windows x86

3a67cda2961b082edea5ae271b9c260b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleInitialize
OleIsCurrentClipboard
OleUninitialize
CoGetClassObject
CoRetireServer
CoInitialize
CoRevokeClassObject
CLSIDFromProgID
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CoTaskMemFree
StgOpenStorageOnILockBytes
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
OleFlushClipboard
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
CLSIDFromString

shlwapi

PathFileExistsW
PathFindFileNameW
PathIsUNCW
PathRemoveFileSpecW
PathStripToRootW
PathFindExtensionW
PathAppendW

gdi32

SelectObject
RectVisible
ExtTextOutW
SetWindowExtEx
DeleteDC
GetBkColor
Escape
SetViewportOrgEx
ExtSelectClipRgn
GetDeviceCaps
PtVisible
ScaleViewportExtEx
ScaleWindowExtEx
GetMapMode
TextOutW
GetStockObject
OffsetViewportOrgEx
GetTextColor
GetRgnBox

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

advapi32

RegOpenKeyW
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueW
RegEnumKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegCloseKey
RegQueryValueExW

oleacc

LresultFromObject
CreateStdAccessibleObject

kernel32

MultiByteToWideChar
MoveFileW
GetModuleFileNameW
GetCalendarInfoW
SetFilePointer
SetFileTime
InterlockedDecrement
lstrcpyW
RemoveDirectoryW
GetCurrentDirectoryW
SystemTimeToFileTime
CreateDirectoryW
FindFirstFileW
FindClose
GetSystemDefaultLangID
GetLocaleInfoW
DeleteFileW
EnumResourceNamesA
FindNextFileW
ReadFile
LocalFileTimeToFileTime
GetFileAttributesW
WriteFile
EnumResourceLanguagesW
ExitProcess
WideCharToMultiByte
GetVersion
ConvertDefaultLocale
GetCurrentProcessId
LoadLibraryW
CreateFileW
GetProcAddress

user32

InvalidateRect
CharNextW
RemovePropW
MessageBeep
SendDlgItemMessageA
SetRect
InvalidateRgn
GetClassInfoExW
CreateWindowExW
WinHelpW
GetPropW
GetClassLongW
CharUpperW
RegisterWindowMessageW
SetPropW
GetNextDlgTabItem
GetNextDlgGroupItem
CopyAcceleratorTableW
IsRectEmpty
DestroyMenu

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 75KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3a67cda2961b082edea5ae271b9c260b

Headers

File Characteristics

Imports

ole32

shlwapi

gdi32

shell32

advapi32

oleacc

kernel32

user32

Sections

.text Size: 109KB - Virtual size: 109KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 75KB - Virtual size: 75KB

.edata Size: 1024B - Virtual size: 116KB

.text
Size: 109KB - Virtual size: 109KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 75KB - Virtual size: 75KB

.edata
Size: 1024B - Virtual size: 116KB