97162e0e2208f6e80d4320c275fda69987c42492ebd0288f11a9625232eb784d

Sharing

Copy URL

Twitter E-mail

General

Target

97162e0e2208f6e80d4320c275fda69987c42492ebd0288f11a9625232eb784d
Size

69KB
MD5

6cbb2ef706bd5e08ec0f83844b5b7ee0
SHA1

90e2964a0f13a2e052efb1436a5613ad29023402
SHA256

97162e0e2208f6e80d4320c275fda69987c42492ebd0288f11a9625232eb784d
SHA512

7c958cc8b838baa871c6a8156c92134532e04148032af617582a842f1ad54981c03d54a78ca96399c32c9bbcfad84be76b238be77ffa81111ca507572d7c975d
SSDEEP

1536:rJCKOXfuGsRf1kQtnSe+L6ZtTqI1RfXTO:rofX2GsRf1vSBCt71RfD

Score

N/A

Malware Config

Signatures

Files

97162e0e2208f6e80d4320c275fda69987c42492ebd0288f11a9625232eb784d
.exe windows x86

09a175ce34a54dd54724fa4a0cff6db9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_XcptFilter
_cexit
exit
__initenv
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_c_exit
_vsnwprintf
_except_handler3
_controlfp
_exit
__setusermatherr
_initterm
__getmainargs
toupper

advapi32

RegSetValueExW
RegCloseKey
RegEnumKeyW
RegOpenKeyExW
RegQueryValueExW

kernel32

SetErrorMode
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
LocalAlloc
LocalFree
lstrlenW
GetTickCount
CloseHandle
OpenProcess
Sleep
GetCurrentThreadId
GetSystemDirectoryW
GetDiskFreeSpaceExW
GetStartupInfoW
WaitForSingleObject
GetLastError
CreateEventW
GetModuleHandleW
GetStartupInfoA
CreateProcessW
GetCommandLineW
WideCharToMultiByte
MulDiv
LoadLibraryExW
FreeLibrary
GetProcAddress
LoadLibraryW
SetEvent
PulseEvent
CreateThread
GetDiskFreeSpaceW
GetVolumeInformationW
GetDriveTypeW
FormatMessageW
QueryPerformanceCounter

gdi32

SetBkMode
ExtTextOutW
SetTextColor
GetTextExtentPoint32W
SetBkColor

user32

DispatchMessageW
SetCursor
LoadCursorW
TranslateMessage
MsgWaitForMultipleObjects
GetWindowThreadProcessId
FindWindowW
LoadStringW
ShowWindow
MessageBoxW
EnumWindows
RegisterClassW
DefDlgProcW
LoadIconW
SendMessageW
PeekMessageW
SetDlgItemTextW
GetWindowLongW
WinHelpW
EnableWindow
SendDlgItemMessageW
SetWindowLongW
GetSystemMetrics
GetClientRect
IsDialogMessageW
DestroyWindow
CreateDialogParamW
GetWindowTextW
DrawFocusRect
DrawIconEx
GetSysColor
SetFocus
EndDialog
DialogBoxParamW
SetForegroundWindow
GetDlgItem
PostMessageW

ole32

CoInitialize
CLSIDFromString
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize

oleaut32

VariantClear
SysStringLen
VariantInit

shlwapi

SHDeleteKeyW
ord346
StrFormatKBSizeW
PathAppendW
StrStrIW
StrCmpW
StrToIntW

comctl32

PropertySheetW
ImageList_Create
ImageList_ReplaceIcon
ord17
CreatePropertySheetPageW

shell32

SHGetFileInfoW
ShellExecuteW
ord680
ExtractIconExW

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

09a175ce34a54dd54724fa4a0cff6db9

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

ole32

oleaut32

shlwapi

comctl32

shell32

Sections

.text Size: 22KB - Virtual size: 21KB

.data Size: 512B - Virtual size: 888B

.rsrc Size: 45KB - Virtual size: 64KB

.text
Size: 22KB - Virtual size: 21KB

.data
Size: 512B - Virtual size: 888B

.rsrc
Size: 45KB - Virtual size: 64KB