dd6c7fe17f3701409de8629e40e1a22b1d5027ea40c539253a3a78ab7ae0fa39

Sharing

Copy URL Twitter E-mail

General

Target

dd6c7fe17f3701409de8629e40e1a22b1d5027ea40c539253a3a78ab7ae0fa39
Size

105KB
MD5

a17469383e38a0567090905bfd2477a6
SHA1

6d7305dc56414ae8904d8aa14459631ed2379ea5
SHA256

dd6c7fe17f3701409de8629e40e1a22b1d5027ea40c539253a3a78ab7ae0fa39
SHA512

44f7127d07276112eac04746c70fa26970e5494200da9488d309a18b47544c20fd6ddf2a2ad626f9ba9a797eeaa5eeee97c74aff7cd590c4cb1386ac0df0fbaf
SSDEEP

3072:K8VVTw1ZzrwV/7bgNcGzdiOTRjsB8Llk+7Cf:KO8LwV0cGdTlsB4C++f

Score

N/A

Malware Config

Signatures

Files

dd6c7fe17f3701409de8629e40e1a22b1d5027ea40c539253a3a78ab7ae0fa39
.exe windows x86

b08c3d6e9b5e33a10f49b3e05d393f64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p___initenv
__p__commode
_adjust_fdiv
calloc
_controlfp
_XcptFilter
_except_handler3
__getmainargs
sinh
__setusermatherr
free
_exit
__p__fmode
_initterm
__dllonexit
__set_app_type

comdlg32

GetOpenFileNameA

kernel32

CompareStringW
WaitForMultipleObjects
GetNumberFormatA
MoveFileA
GlobalUnlock
WriteConsoleA
RemoveDirectoryA
GetCurrentThreadId
GetEnvironmentStringsW
InterlockedCompareExchange
GetStringTypeExA
TerminateProcess

user32

WaitMessage
ClientToScreen
SetFocus
PtInRect
ShowWindow
ShowOwnedPopups
GetMenuItemID
AdjustWindowRectEx
DestroyMenu
GetFocus
SetDlgItemTextA
GetTopWindow
GetCapture
ReleaseCapture

gdi32

GetClipRgn
SetTextJustification
PolyBezierTo
DeleteMetaFile
CreateDCW
EnumFontFamiliesW
CreatePalette
GetOutlineTextMetricsA
GetNearestColor
DeleteDC
GetRgnBox
GetBkMode
CreateFontW
BeginPath
ExtTextOutA
CreateHatchBrush
CreatePenIndirect
GetObjectType
CreateMetaFileW
SetMetaFileBitsEx
TextOutW

advapi32

CryptReleaseContext
OpenServiceW
DeregisterEventSource
AdjustTokenPrivileges
GetUserNameA
EqualSid
LookupPrivilegeValueA
RevertToSelf
SetSecurityDescriptorDacl
CryptDestroyHash
RegCreateKeyExA

ole32

RevokeDragDrop
CoInitializeEx
OleSetMenuDescriptor
CoRegisterClassObject
IIDFromString
OleRun
CoGetClassObject
CreateStreamOnHGlobal
OleUninitialize
OleFlushClipboard
CreateBindCtx
CoUninitialize
CoCreateGuid
ReleaseStgMedium

comctl32

ImageList_SetImageCount
CreatePropertySheetPageW
ImageList_Write
ImageList_SetBkColor
ImageList_DragShowNolock
ImageList_Replace
ImageList_GetIconSize
CreateToolbarEx
ImageList_SetOverlayImage
ImageList_SetIconSize
ImageList_Add

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b08c3d6e9b5e33a10f49b3e05d393f64

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

ole32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 39KB

.rsrc Size: 30KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 39KB

.rsrc
Size: 30KB - Virtual size: 30KB