8548e1798c6f8f23d92f52cbf0c4afc00dfc81d28880e166f9f442ee62a919bb

Sharing

Copy URL Twitter E-mail

General

Target

8548e1798c6f8f23d92f52cbf0c4afc00dfc81d28880e166f9f442ee62a919bb
Size

133KB
MD5

490fe290117c5a29e474a2852aa221f0
SHA1

4accdd03c78ac8af05d124edf52479b9fde863a1
SHA256

8548e1798c6f8f23d92f52cbf0c4afc00dfc81d28880e166f9f442ee62a919bb
SHA512

2cd6b90a11243e783d82a66943c61ec7d2f3dcfe719264b1194ff15389dd3b30d16cbdd3bfe63f8ca37758a3cffc2c2a586490aa8f163f39cde08cee044a61eb
SSDEEP

3072:uoc+XXMhplF3mufAN/MDBB7V17smaJeHkz1u:+hl3mufA5MDBlMUH

Score

N/A

Malware Config

Signatures

Files

8548e1798c6f8f23d92f52cbf0c4afc00dfc81d28880e166f9f442ee62a919bb
.exe windows x86

bd3f7f03d9dde91ed1b48335a73a655e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetCurrentDirectoryA
WaitForSingleObject
GetFileType
VirtualProtect
GetStartupInfoA
DeviceIoControl
GetSystemDirectoryW
RtlUnwind
GlobalFree
DeleteFileW
GlobalAlloc
GetEnvironmentStringsW
GetModuleHandleA

user32

GetSystemMenu
EnableMenuItem
LoadCursorA
CreatePopupMenu
GetClientRect
GetMenuItemCount
GetWindowPlacement

msvcrt

log10
_acmdln
__p__fmode
abort
_wcsicmp
_except_handler3
exit
__setusermatherr
__set_app_type
rand
wcsrchr
_adjust_fdiv
_XcptFilter
_controlfp
__p__commode
_initterm
_kbhit
__getmainargs

shell32

SHGetSpecialFolderPathA
SHGetPathFromIDListA
CommandLineToArgvW
ShellExecuteExA
SHGetDiskFreeSpaceExW
SHCreateDirectoryExW
SHGetSettings
SHAddToRecentDocs
SHGetSpecialFolderPathW
SHAppBarMessage
ExtractIconExA

comctl32

DestroyPropertySheetPage
CreateStatusWindowA
ImageList_EndDrag
ImageList_SetIconSize
ImageList_Replace
ImageList_DragShowNolock
ImageList_GetImageInfo

oleaut32

SysFreeString
SafeArrayPtrOfIndex
SafeArrayGetUBound
SysAllocStringLen
SafeArrayUnaccessData
SetErrorInfo

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerLanguageNameA
GetFileVersionInfoSizeA
VerFindFileW
GetFileVersionInfoA
VerInstallFileW
VerQueryValueW
VerQueryValueA

ole32

StgOpenStorage
CLSIDFromString
DoDragDrop
StringFromGUID2
StgOpenStorageOnILockBytes
OleIsCurrentClipboard

advapi32

RegCreateKeyExW
RegDeleteValueA
RegQueryValueExA
InitializeSecurityDescriptor
CloseServiceHandle
OpenProcessToken

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd3f7f03d9dde91ed1b48335a73a655e

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

comctl32

oleaut32

version

ole32

advapi32

Sections

.text Size: 81KB - Virtual size: 81KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 35KB - Virtual size: 35KB

.text
Size: 81KB - Virtual size: 81KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 35KB - Virtual size: 35KB