7b6769cd3a5abcb23b6ec494c2c7e854cf173a1392785b7919a71506d9120196

Sharing

Copy URL

Twitter E-mail

General

Target

7b6769cd3a5abcb23b6ec494c2c7e854cf173a1392785b7919a71506d9120196
Size

54KB
MD5

168a567becc93d97ccbad039fcb62fd0
SHA1

1c08777da31abb978404d461569aad091e2af323
SHA256

7b6769cd3a5abcb23b6ec494c2c7e854cf173a1392785b7919a71506d9120196
SHA512

a7e492bd2ad707335fca3bfc095601f96667549899ffe27d5ee025916355632f11c931ec79783858036475c4ea0ba9c7124ccd9757c07c952028f0bff1eac20b
SSDEEP

1536:6Uf67S7QIkNCIcABdfe/gZ5ikT2i8iy4kcHC:6LSsNC94f+gZ0C8iy4kcHC

Score

N/A

Malware Config

Signatures

Files

7b6769cd3a5abcb23b6ec494c2c7e854cf173a1392785b7919a71506d9120196
.exe windows x86

11c6c5860438b531ee08e7c0943b1a76

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateGenericComposite
ReadFmtUserTypeStg
StgCreatePropSetStg
CoGetMalloc
CoCreateGuid
OleCreate
OleLockRunning

gdi32

Arc
CopyEnhMetaFileA
CancelDC
AddFontResourceW
CreateDCA
ExtSelectClipRgn
Chord
ExtEscape
EndPage
Ellipse
CreateEllipticRgn
EqualRgn
GetBrushOrgEx
CreateCompatibleBitmap

comctl32

ord16
CreatePropertySheetPageW
FlatSB_GetScrollInfo
PropertySheetW
CreatePropertySheetPageA
PropertySheetA

advapi32

ReportEventW
RegQueryValueExA
RegFlushKey
RegUnLoadKeyA
RegSetValueExA
OpenEventLogW
OpenEventLogA

shlwapi

SHRegOpenUSKeyA
SHSetValueW
SHRegEnumUSKeyW
PathSetDlgItemPathW
PathIsFileSpecA
StrChrA
SHRegDeleteUSValueA
SHRegQueryUSValueW
PathRelativePathToA
StrCmpW
SHRegDeleteEmptyUSKeyA
SHDeleteKeyA
PathAppendA
StrCSpnIW

kernel32

Sleep
GetModuleHandleA
LoadLibraryW
VirtualAlloc
GetProcAddress
GetStartupInfoA
GetPrivateProfileIntA

secur32

DeleteSecurityContext
MakeSignature
ExportSecurityContext
CompleteAuthToken
FreeCredentialsHandle
DecryptMessage
ApplyControlToken
EncryptMessage
AcceptSecurityContext
VerifySignature

activeds

ord17
ord4
ord8

msvcrt

freopen
isdigit
perror
iswctype
isgraph
_fsopen
fputs
fseek
fputc
_fullpath
_flushall
free
fread
isalnum
iscntrl
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
isalpha

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11c6c5860438b531ee08e7c0943b1a76

Headers

DLL Characteristics

File Characteristics

Imports

ole32

gdi32

comctl32

advapi32

shlwapi

kernel32

secur32

activeds

msvcrt

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 11KB - Virtual size: 11KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 11KB - Virtual size: 11KB

.rsrc
Size: 23KB - Virtual size: 23KB