c9b3b536b402a8d6df8b5724f7830cc276360aa24eac7fd8eff19e7b4d59882f

Sharing

Copy URL Twitter E-mail

General

Target

c9b3b536b402a8d6df8b5724f7830cc276360aa24eac7fd8eff19e7b4d59882f
Size

171KB
MD5

61424066839c8af3901d4cecf5165530
SHA1

5c02553dc1d6ad1cf0b54aa61f1dcf25d06a45b3
SHA256

c9b3b536b402a8d6df8b5724f7830cc276360aa24eac7fd8eff19e7b4d59882f
SHA512

853428a8b29bbd0e6e8a2c3e21d782398e45f887577585610c9af792f5265451dd4eec1a6bba189495d752540eaba6e3e26289c0224c687cedb700c901dcb6cd
SSDEEP

3072:Xattpf0CgopEWhblExWboqU9NdrfqOB9kfdpdEegomTwGxlIY:ctpf0sEWhbDoN97WOnkfLCT7wC

Score

N/A

Malware Config

Signatures

Files

c9b3b536b402a8d6df8b5724f7830cc276360aa24eac7fd8eff19e7b4d59882f
.exe windows x86

ac83d13ce1a8cea6b12d20b422eae945

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemFree
OleInitialize
CoInitialize
CLSIDFromProgID
OleIsCurrentClipboard
CoTaskMemAlloc
CoRetireServer
CoCreateInstance
CoUninitialize
CoFreeUnusedLibraries
CoGetClassObject
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
OleUninitialize
OleFlushClipboard
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CLSIDFromString

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

kernel32

FindClose
EnumResourceLanguagesW
DeleteFileW
GetModuleFileNameW
GetCalendarInfoW
GetFileAttributesW
LoadLibraryW
GetCurrentDirectoryW
FindFirstFileW
MoveFileW
WideCharToMultiByte
CreateFileW
ReadFile
GetLocaleInfoW
FindNextFileW
EnumResourceNamesA
LocalFileTimeToFileTime
RemoveDirectoryW
InterlockedDecrement
ConvertDefaultLocale
GetCurrentProcessId
GetSystemDefaultLangID
ExitProcess
CreateDirectoryW
SystemTimeToFileTime
MultiByteToWideChar
lstrcpyW
GetVersion
SetFileTime
WriteFile
SetFilePointer
GetProcAddress

gdi32

RectVisible
Escape
SetWindowExtEx
GetStockObject
GetBkColor
DeleteDC
GetMapMode
GetDeviceCaps
ExtTextOutW
GetTextColor
ScaleWindowExtEx
ScaleViewportExtEx
TextOutW
PtVisible
SetViewportOrgEx
SelectObject
ExtSelectClipRgn
OffsetViewportOrgEx
GetRgnBox

advapi32

RegSetValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
RegCloseKey
RegOpenKeyExW
RegQueryInfoKeyW
RegCreateKeyExW
RegEnumKeyExW
RegQueryValueExW

oleacc

LresultFromObject
CreateStdAccessibleObject

user32

WinHelpW
InvalidateRgn
CreateWindowExW
SetRect
MessageBeep
GetNextDlgTabItem
GetClassInfoExW
GetNextDlgGroupItem
SendDlgItemMessageA
GetPropW
CopyAcceleratorTableW
RemovePropW
GetClassLongW
CharNextW
RegisterWindowMessageW
InvalidateRect
CharUpperW
SetPropW
IsRectEmpty
DestroyMenu

shlwapi

PathRemoveFileSpecW
PathStripToRootW
PathFindFileNameW
PathFindExtensionW
PathIsUNCW
PathFileExistsW
PathAppendW

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac83d13ce1a8cea6b12d20b422eae945

Headers

File Characteristics

Imports

ole32

shell32

kernel32

gdi32

advapi32

oleacc

user32

shlwapi

Sections

.text Size: 95KB - Virtual size: 94KB

.rdata Size: 3KB - Virtual size: 3KB

.bss Size: 70KB - Virtual size: 70KB

.edata Size: 1024B - Virtual size: 96KB

.text
Size: 95KB - Virtual size: 94KB

.rdata
Size: 3KB - Virtual size: 3KB

.bss
Size: 70KB - Virtual size: 70KB

.edata
Size: 1024B - Virtual size: 96KB