4b3b87bdbc74a8156f0353c2629192a27de1ccf993900202127221a7358be175

Sharing

Copy URL Twitter E-mail

General

Target

4b3b87bdbc74a8156f0353c2629192a27de1ccf993900202127221a7358be175
Size

80KB
MD5

03b5efccd98c15201dc32cad9b53644c
SHA1

38eb568198d23ab6b317f35c0f2f84510df57c72
SHA256

4b3b87bdbc74a8156f0353c2629192a27de1ccf993900202127221a7358be175
SHA512

36fc998b25b92777daef1af48d46b9487da06b51b01e7487c11f113c5eb8fb99cb23ad94d9f8a06db3e5e8a39176b6c5a5162540df8966b6956f88b64d8798d3
SSDEEP

1536:4Wne/TTqpKgjKLNHj2Bk2IIGEgHkRpubMSA7Mzq6rtaUsIo3wg1bedl9R8Gv9nYj:GDjZ29GEgK0oP7Mzq+gUsIo1lDOnYavq

Score

N/A

Malware Config

Signatures

Files

4b3b87bdbc74a8156f0353c2629192a27de1ccf993900202127221a7358be175
.exe windows x86

0b4aac1b8be099a154d0181c93e64e42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_acmdln
signal
_cexit
fprintf
strncpy
_exit
__set_app_type
fopen
sqrt
_initterm
_except_handler3
_adjust_fdiv
exit
__getmainargs
strlen
_stricmp
free
__setusermatherr
_setmode
__p__fmode
wcslen
calloc
_write

kernel32

DeleteFileA
FileTimeToDosDateTime
EnumCalendarInfoA
CompareStringW
OutputDebugStringA
Sleep
GetModuleFileNameA
GlobalLock
SetErrorMode
ReadFile
GetModuleHandleW
GetLocaleInfoW
GetStartupInfoA
FreeLibrary
SetFileAttributesW
WriteFile
DeviceIoControl

user32

GetScrollRange
CloseClipboard
CreatePopupMenu
SetClipboardData
LoadCursorA
DialogBoxParamA
MessageBeep
LoadIconA
GetActiveWindow
GetMenu
ShowCursor
WaitMessage
UpdateWindow
MessageBoxA
IsDialogMessageA
GetMessagePos
GetCapture
ClientToScreen
InsertMenuA

gdi32

CreateRoundRectRgn
SetPolyFillMode
CreateHalftonePalette
SetMapperFlags
MaskBlt
GetBrushOrgEx
UnrealizeObject
CreateRectRgnIndirect
CreateICA

advapi32

InitializeSecurityDescriptor
RegEnumKeyA
CopySid
RevertToSelf
DeregisterEventSource
RegDeleteKeyA
CryptReleaseContext
RegFlushKey

ole32

CoDisconnectObject
RevokeDragDrop
OleDraw
CoRevokeClassObject
StringFromIID
CoUninitialize
CoCreateGuid
CoGetMalloc
StringFromGUID2
CoTaskMemAlloc
IIDFromString
OleSetClipboard

oleaut32

VariantCopyInd
VariantInit
SafeArrayPutElement
SafeArrayUnaccessData
GetActiveObject
CreateErrorInfo
SysFreeString
SysReAllocStringLen
SafeArrayCreate
SysStringLen

comctl32

ImageList_GetBkColor
ImageList_DrawEx
InitCommonControls
ImageList_DragShowNolock
CreateToolbarEx
PropertySheetW
ImageList_LoadImageW
ImageList_AddMasked
ImageList_EndDrag
ImageList_DragEnter

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b4aac1b8be099a154d0181c93e64e42

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 3KB - Virtual size: 2KB