b978cfb2d65a3618ebf5f2469dc6a898791f2903c89f783f2a1ae82dcdccdff6

Sharing

Copy URL Twitter E-mail

General

Target

b978cfb2d65a3618ebf5f2469dc6a898791f2903c89f783f2a1ae82dcdccdff6
Size

101KB
MD5

91175193e74ed5b85d46f2338fedd876
SHA1

48f3b1aa0983f437e5e2c9a9f65df7400484e12f
SHA256

b978cfb2d65a3618ebf5f2469dc6a898791f2903c89f783f2a1ae82dcdccdff6
SHA512

1f98acfb25abb01d240addb930e1193f14b1b8641e412e2a4e7fbae638861aa417038390683391aef7e66b6a840eec3d51735952741e7ec255f6f74d2c104e8d
SSDEEP

1536:eszj8Paay1nMMvkLpry2fKL9iZdiOwoySdXwBJSK8wntxW8cUfK:eC8i51MkkL02fKYZdnnySd89Nu8cUfK

Score

N/A

Malware Config

Signatures

Files

b978cfb2d65a3618ebf5f2469dc6a898791f2903c89f783f2a1ae82dcdccdff6
.exe windows x86

f44459ef7fa08f00ef32dc6d2d2f4b40

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
GetCurrentThreadId
GetExitCodeProcess
GlobalLock
GetUserDefaultLCID
CreateProcessW
LCMapStringW
LocalAlloc
DeleteFileW
GetCurrentProcessId
GetTempFileNameA
lstrcmpiW
FileTimeToSystemTime
GlobalFree
QueryPerformanceCounter
GetTickCount
GetNumberFormatA
GetModuleHandleA
GetFileAttributesA
InterlockedIncrement

msvcrt

fprintf
_controlfp
strlen
memcpy
__set_app_type
sinh
memset
strchr
__getmainargs
_XcptFilter
wcslen
fwrite
_adjust_fdiv
free
calloc
__p__commode
__p__environ
_setmode
__setusermatherr
_exit
atoi
_except_handler3
__p___initenv
__p__fmode
strstr
_initterm

comdlg32

GetOpenFileNameA

user32

SetActiveWindow
SetDlgItemTextA
GetMenuItemID
SetWindowTextA
WinHelpA
ReleaseDC
TrackPopupMenu

advapi32

RegQueryValueExA
GetTokenInformation
RegQueryValueExW
RegEnumValueA
RegOpenKeyW
RegEnumKeyW
CryptGenRandom
CryptAcquireContextA
RegOpenKeyExA
LookupPrivilegeValueA
CryptDestroyHash
QueryServiceStatus
RegCreateKeyExW

comctl32

InitCommonControlsEx
ImageList_GetBkColor
ImageList_Destroy
CreateStatusWindowA
ImageList_AddMasked
ImageList_Read
ImageList_Replace
CreatePropertySheetPageW

gdi32

SetWindowExtEx
CreateFontIndirectW
GetTextMetricsA
PlayEnhMetaFile
GetMetaFileBitsEx
EnumFontsA
StartDocW
CreateBitmap
GetTextExtentExPointW
GetPixel
StrokeAndFillPath
SetViewportOrgEx

ole32

CoRegisterClassObject
CoCreateInstance
OleRun
StgOpenStorageOnILockBytes
CoInitializeSecurity
OleInitialize
CoTaskMemRealloc
CoGetInterfaceAndReleaseStream
StgOpenStorage
IsEqualGUID
CoRegisterMessageFilter
CoReleaseMarshalData
RevokeDragDrop

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f44459ef7fa08f00ef32dc6d2d2f4b40

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

advapi32

comctl32

gdi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 30KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 30KB - Virtual size: 100KB