8a6060fde71b3f1d51fc01548fc3c968643aaa863f2c288b3ca406032bf961d8

Sharing

Copy URL Twitter E-mail

General

Target

8a6060fde71b3f1d51fc01548fc3c968643aaa863f2c288b3ca406032bf961d8
Size

105KB
MD5

172ab4cec3be056e69274e83b2ef91cc
SHA1

7042a50eddac4364ceb17d43f260792e6dd04ab0
SHA256

8a6060fde71b3f1d51fc01548fc3c968643aaa863f2c288b3ca406032bf961d8
SHA512

0ad375411085ae048962e87b1fd8f7b66b3f21f962b6a45bb19c634f3b045c5c9a1c8d3d807aea941c9d909931ada552c519d0f46fe63c899e713a93dfa99e55
SSDEEP

1536:nNdo5XRGmecjm7pGew+FgNM20LCCMuyIp1hWNKE6LJFBbbEXAaNF7aJdB7l92z6z:nNdKXsmcxgs2N6pDWNsLJQvD7aB7Hz

Score

N/A

Malware Config

Signatures

Files

8a6060fde71b3f1d51fc01548fc3c968643aaa863f2c288b3ca406032bf961d8
.exe windows x86

bdff5b13d3bdf0c89c5bbe0a4dd44b1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcpy
strchr
_except_handler3
__getmainargs
wcslen
fflush
abort
_exit
fprintf
free
__p__commode
_XcptFilter
__p__fmode
printf
__setusermatherr
fwrite
strcmp
__set_app_type
_initterm
_adjust_fdiv
memset
sinh
_acmdln
calloc
exit

kernel32

SetFilePointer
SetEnvironmentVariableA
GetStringTypeA
CreateEventA
GetStartupInfoW
CreateProcessA
GetFileTime
CopyFileA
IsBadCodePtr
SetFileTime
GetProfileIntA
GetThreadLocale
GetCommandLineW
LCMapStringA
GetProfileStringA
GetCurrentThread
GetTimeZoneInformation
SetEvent
GetStartupInfoA
OpenProcess
IsDebuggerPresent
InterlockedIncrement
GetStringTypeW
SetErrorMode

shell32

SHGetFileInfoA
CommandLineToArgvW
SHBrowseForFolderW
SHGetFolderLocation
ExtractIconA
SHCreateDirectoryExA

gdi32

GetTextFaceA
SetTextJustification
CreateCompatibleBitmap
SetROP2
TextOutA
GetTextExtentPointW
SelectClipPath
GetPixel
CreateDCA
CreateRectRgn
GetDeviceCaps
RectVisible
EndDoc
SetDIBColorTable
Polygon
GetOutlineTextMetricsA

ole32

ProgIDFromCLSID
CoInitialize
CoTaskMemRealloc
CoCreateGuid
CreateILockBytesOnHGlobal
CoRegisterClassObject
IsAccelerator
OleIsCurrentClipboard
OleFlushClipboard
CoSetProxyBlanket
PropVariantClear

oleaut32

SafeArrayPutElement
SysStringLen
GetActiveObject
SafeArrayGetElement
SysAllocStringByteLen
VariantCopyInd

comctl32

ImageList_SetIconSize
CreatePropertySheetPageA
ImageList_DrawEx
ImageList_Draw
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_SetBkColor
PropertySheetA
ImageList_Replace
InitCommonControls

user32

DestroyCursor
ShowWindow
GetMenuItemID
GetScrollPos
RemovePropA
GetKeyState
GetFocus
CallWindowProcA

advapi32

InitializeAcl
ControlService
SetSecurityDescriptorGroup
RegCloseKey
GetUserNameA
RegEnumKeyExA
AllocateAndInitializeSid
RegEnumKeyA
RegOpenKeyExW
CopySid
CheckTokenMembership
SetSecurityDescriptorOwner

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bdff5b13d3bdf0c89c5bbe0a4dd44b1a

Headers

File Characteristics

Imports

msvcrt

kernel32

shell32

gdi32

ole32

oleaut32

comctl32

user32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 25KB - Virtual size: 100KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 25KB - Virtual size: 100KB