f06529aa7e8593af7d39dd98752bb22dab02b753ba59d13cd3d74f024f7b5c13

Sharing

Copy URL

Twitter E-mail

General

Target

f06529aa7e8593af7d39dd98752bb22dab02b753ba59d13cd3d74f024f7b5c13
Size

641KB
MD5

d0e13276cbf6180333b3c1e98d1a9d3e
SHA1

bb9a4bde59342b465f913f10f162791d783c7b21
SHA256

f06529aa7e8593af7d39dd98752bb22dab02b753ba59d13cd3d74f024f7b5c13
SHA512

12dd13fd76e58bfc30531230cb032b88957b06b203ee1e1f98231f505464bf7a4946ad7b2ef48ff2e6c98299fc656f7e80d452c6f94d674b5e8838cd6e296c73
SSDEEP

6144:3Z1KIYxFqymI/Ylbeeo9cEcBnre2uFGSIrIFNNU:3Z1KIYVmRRo9ASwIFvU

Score

N/A

Malware Config

Signatures

Files

f06529aa7e8593af7d39dd98752bb22dab02b753ba59d13cd3d74f024f7b5c13
.exe windows x86

05a0ae4e00f0e63123ea9464a5dfe61e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetProcAddress
GetVersion
LoadLibraryA
VirtualAlloc
VirtualProtect
ExitProcess
GetACP
lstrlenA
lstrcatA
lstrcmpA
GetProcessId
GetLastError
GetTickCount
GetCurrentThreadId
GetConsoleCP
SetLastError
SetLocaleInfoA
GetCurrentConsoleFont
EnumerateLocalComputerNamesA
ReadConsoleInputW
CloseHandle
VerLanguageNameW
GetWindowsDirectoryW
TerminateJobObject
GetCommState
CreateActCtxA
EnumSystemLocalesW

comctl32

InitCommonControls
ImageList_DragEnter
ImageList_SetIconSize
ImageList_EndDrag
ImageList_GetFlags
DPA_DeletePtr
PropertySheetW
PropertySheet
FlatSB_ShowScrollBar
DllGetVersion
ImageList_GetImageInfo
ImageList_Replace
CreateStatusWindow
ImageList_DragMove
DrawInsert
DPA_EnumCallback
DPA_Destroy
ImageList_Write
ImageList_Read
CreateMappedBitmap
MenuHelp
ImageList_LoadImage
DSA_Create
CreatePropertySheetPageA

msimg32

AlphaBlend
DllInitialize
TransparentBlt
GradientFill
vSetDdrawflag

user32

RecordShutdownReason
IsWinEventHookInstalled
GetMenuState
DrawFrame
LoadKeyboardLayoutW
GetClipboardViewer
CreateDialogIndirectParamA
LockWindowUpdate
OpenDesktopA
CheckMenuItem
DialogBoxIndirectParamAorW
LoadCursorW
SetScrollPos
GetMenuItemID

oleaut32

VarDecFromI2
GetVarConversionLocaleSetting
VarBstrFromI2
VarCyAbs
VarFormatCurrency
VarUI1FromUI2
VarI2FromUI8
VarI1FromR8
SafeArrayAccessData
VarDateFromStr
VarNumFromParseNum
VariantChangeType
VarI8FromI2
VarUI4FromI1
VarR8FromDec
VarNeg
LPSAFEARRAY_UserMarshal
SafeArrayGetVartype
DispCallFunc
VarUI4FromI4
VarCySub
VarUI1FromCy
VarR4FromStr
VarMul
VarBoolFromUI1
SafeArrayRedim
VarI4FromDec

oleacc

DllGetClassObject
IID_IAccessible
AccessibleObjectFromWindow
CreateStdAccessibleProxyA
AccessibleObjectFromPoint
WindowFromAccessibleObject
DllUnregisterServer
AccessibleObjectFromEvent
AccessibleChildren
CreateStdAccessibleObject
GetRoleTextW

gdi32

SetColorSpace
StartDocW
GdiAddGlsBounds
SelectBrushLocal
GetGlyphOutline
DdEntry22
CheckColorsInGamut
CreateHatchBrush
CopyEnhMetaFileW
StartPage
GdiStartDocEMF
GdiEntry1
EnumMetaFile
PlayEnhMetaFileRecord
CopyEnhMetaFileA
CreateEllipticRgnIndirect
GetDCPenColor
SetPixelFormat
XLATEOBJ_iXlate
GetWindowExtEx
InvertRgn
GetTextExtentExPointI

oledlg

OleUIEditLinksW
OleUIPasteSpecialA
OleUIPromptUserW
OleUICanConvertOrActivateAs
OleUIChangeIconA
OleUIObjectPropertiesA
OleUIAddVerbMenuW
OleUIBusyA
OleUIChangeSourceW
OleUIInsertObjectA
OleUIPasteSpecialW
OleUIConvertA

version

VerFindFileA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerInstallFileW
GetFileVersionInfoW

Sections

.text
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tiot
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tpoi
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ysde
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

05a0ae4e00f0e63123ea9464a5dfe61e

Headers

File Characteristics

Imports

kernel32

comctl32

msimg32

user32

oleaut32

oleacc

gdi32

oledlg

version

Sections

.text Size: 259KB - Virtual size: 258KB

.data Size: 15KB - Virtual size: 15KB

.rdata Size: 4KB - Virtual size: 3KB

.rsrc Size: 10KB - Virtual size: 9KB

.tiot Size: 4KB - Virtual size: 4KB

.tpoi Size: 72KB - Virtual size: 72KB

.ysde Size: 276KB - Virtual size: 276KB

.text
Size: 259KB - Virtual size: 258KB

.data
Size: 15KB - Virtual size: 15KB

.rdata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 10KB - Virtual size: 9KB

.tiot
Size: 4KB - Virtual size: 4KB

.tpoi
Size: 72KB - Virtual size: 72KB

.ysde
Size: 276KB - Virtual size: 276KB