f887130f767c6476c907cf0a8f67a5357c0f40e59f5d3f9903b3ecc670ee3bec

Sharing

Copy URL Twitter E-mail

General

Target

f887130f767c6476c907cf0a8f67a5357c0f40e59f5d3f9903b3ecc670ee3bec
Size

160KB
MD5

13e9400d320cba03d6fb0f40466839d0
SHA1

46df81e9915c93c165ef46175ab918df2ac5245a
SHA256

f887130f767c6476c907cf0a8f67a5357c0f40e59f5d3f9903b3ecc670ee3bec
SHA512

ddbcead845d37aba1236b6841f11de11aa7501c7562bdab43bbc92815f390af03bfbd856d028c4ed359f23e9d2cfe7b0c5ac142fd4743dcd24b0d911bb812556
SSDEEP

3072:Mzj3lAO7i1cHQK9TR5Vzpq4waV17h3F/filImN4xsX77:4DeuccHT9lV17EosL

Score

N/A

Malware Config

Signatures

Files

f887130f767c6476c907cf0a8f67a5357c0f40e59f5d3f9903b3ecc670ee3bec
.exe windows x86

2f29166146b99e602b9e6f57c4303857

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetContextToken
StgCreateDocfileOnILockBytes
StringFromIID
CoGetMalloc
CLSIDFromString
CoTaskMemFree
CoRevokeClassObject
CoUnmarshalInterface
MkParseDisplayName
CreateBindCtx
CoCreateGuid
CoGetObjectContext
CoGetContextToken
OleRegGetUserType
CoRevokeClassObject

kernel32

GetEnvironmentStrings
HeapAlloc
VirtualAlloc
ExitProcess
GetModuleHandleA
LoadLibraryA
GetModuleHandleW
lstrlenA
GetCommandLineA
GetACP
IsBadHugeReadPtr
GetProcAddress
LoadLibraryExA
ExitThread
GetLastError
GetOEMCP
IsBadReadPtr
GetEnvironmentStrings

version

VerInstallFileA
GetFileVersionInfoA
VerFindFileA
GetFileVersionInfoSizeA
VerFindFileA
VerInstallFileA

shell32

Shell_NotifyIconA
SHGetFolderPathA

comdlg32

GetOpenFileNameA
GetFileTitleA
GetOpenFileNameA

oleaut32

SysFreeString
SysStringLen
VariantChangeType
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayGetElement
RegisterTypeLib
SysAllocStringLen
VariantChangeType
RegisterTypeLib
VariantCopyInd
VariantChangeType
GetErrorInfo
SafeArrayGetUBound
OleLoadPicture
SysAllocStringLen
SysStringLen
SysReAllocStringLen
SysFreeString

msvcrt

memset
mbstowcs
malloc
calloc
wcschr
memmove
swprintf
_acmdln
asin
rand
wcscspn
sprintf
abs
sin
swprintf
wcstol
srand
memset
malloc
exp
tan
log10
strcmp
cos
strncmp
rand

user32

GetMenuState
GetWindow
GetMenuStringA
GetSysColor
GetScrollInfo
GetMenuItemInfoA
GetParent
GetSystemMenu
GetLastActivePopup
GetWindowLongA
GetKeyState
GetMenuItemID
GetMessagePos
GetSubMenu
GetKeyboardLayout
GetPropA
GetScrollRange
GetScrollPos
GetKeyNameTextA
GetWindowLongW
GetKeyboardLayoutNameA
GetMenu
GetKeyboardState
GetIconInfo
GetTopWindow
GetSysColorBrush
GetMenuItemCount
GetWindowDC
GetKeyboardType
GetKeyboardLayoutList
FindWindowA
GetSystemMenu

comctl32

ImageList_Add

gdi32

SetTextColor
SetPixel
GetObjectA

shlwapi

PathFileExistsA
SHSetValueA

advapi32

RegEnumKeyA
RegOpenKeyExA
RegQueryInfoKeyA
RegQueryValueExA

Sections

CODE
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 839B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 872B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.hdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f29166146b99e602b9e6f57c4303857

Headers

File Characteristics

Imports

ole32

kernel32

version

shell32

comdlg32

oleaut32

msvcrt

user32

comctl32

gdi32

shlwapi

advapi32

Sections

CODE Size: 112KB - Virtual size: 109KB

.rdata Size: 4KB - Virtual size: 839B

.data Size: 4KB - Virtual size: 872B

DATA Size: 8KB - Virtual size: 6KB

.cdata Size: 8KB - Virtual size: 6KB

.hdata Size: 8KB - Virtual size: 4KB

.rsrc Size: 12KB - Virtual size: 8KB

CODE
Size: 112KB - Virtual size: 109KB

.rdata
Size: 4KB - Virtual size: 839B

.data
Size: 4KB - Virtual size: 872B

DATA
Size: 8KB - Virtual size: 6KB

.cdata
Size: 8KB - Virtual size: 6KB

.hdata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 12KB - Virtual size: 8KB