631cfaf23d9c5c85641b132286d57744b64db1645055460b96df73ef43bc5d9d

Sharing

Copy URL Twitter E-mail

General

Target

631cfaf23d9c5c85641b132286d57744b64db1645055460b96df73ef43bc5d9d
Size

97KB
MD5

918082ce6472b4f6fbd3eb256819f090
SHA1

61db98e986c2bc4cc8841383834122a3c947b7db
SHA256

631cfaf23d9c5c85641b132286d57744b64db1645055460b96df73ef43bc5d9d
SHA512

70cf04b2cac686979b99a0d6c44f507e60f79f88234a3c3a3615fb7524b651f388667efb83a90c06bc352550d311e647a69ff9b73d8b7d9dbf04b6885b0b35b2
SSDEEP

1536:AyH8ldyPbUjCoufzkCJUvxGmY8ykaFU+4HyPfRS1PVpgegLIVpPCkoHUxE2:5H8lcojAkrxz2FCWIxVpZgcVoHqE2

Score

N/A

Malware Config

Signatures

Files

631cfaf23d9c5c85641b132286d57744b64db1645055460b96df73ef43bc5d9d
.exe windows x86

4d5c13a7105b4f5e54a9f8ea011a9604

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_onexit
_initterm
free
_adjust_fdiv
__setusermatherr
calloc
_acmdln
fputc
_exit
__set_app_type
__getmainargs
fflush
memmove
__p__fmode
_except_handler3
_stricmp
__p__commode
_strnicmp
_write

kernel32

GetProcAddress
LoadLibraryExW
VirtualProtect
ReadFile
WriteFile
FileTimeToDosDateTime
GetShortPathNameA
GetUserDefaultLangID
FreeLibrary
LCMapStringW
GetStartupInfoA
GetStdHandle

gdi32

OffsetRgn
GetCurrentPositionEx
EnumEnhMetaFile
GetEnhMetaFileDescriptionA
CreateEllipticRgn
GetClipBox
CreatePenIndirect
GetMetaFileBitsEx
GetNearestPaletteIndex
GetObjectW
SetWinMetaFileBits

oleaut32

SafeArrayUnaccessData
SafeArrayCreate
SysFreeString
SetErrorInfo
VariantCopyInd
GetErrorInfo
GetActiveObject

ole32

RevokeDragDrop
CoTaskMemRealloc
IsAccelerator
StgOpenStorageOnILockBytes
StringFromGUID2
StringFromCLSID
CoUninitialize
CoReleaseMarshalData
CoGetMalloc
OleRun

user32

DrawFrameControl
InvalidateRect
GetFocus
GetDesktopWindow
BeginPaint
GetClientRect
SendDlgItemMessageA
PostQuitMessage
GetWindowRect
DestroyMenu

advapi32

GetSecurityDescriptorDacl
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegOpenKeyA
InitializeAcl
RegFlushKey
OpenSCManagerA
CryptDestroyHash
RegCreateKeyExW
RegQueryValueA
RevertToSelf

comctl32

ImageList_AddMasked
ImageList_GetIcon
PropertySheetW
ImageList_SetIconSize
ImageList_DrawEx
ImageList_Draw
ImageList_LoadImageA
ImageList_SetDragCursorImage
CreatePropertySheetPageA
ImageList_SetImageCount
ImageList_Destroy
ImageList_Create
InitCommonControlsEx
ImageList_SetBkColor
CreateStatusWindowA

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4d5c13a7105b4f5e54a9f8ea011a9604

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

oleaut32

ole32

user32

advapi32

comctl32

Sections

.text Size: 55KB - Virtual size: 55KB

.data Size: 25KB - Virtual size: 24KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 55KB - Virtual size: 55KB

.data
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 16KB - Virtual size: 16KB