71433d17af5287e9fb6b08dc5ef0630417e5d67ade2cbf5b5b054bf49e62bba1

Sharing

Copy URL

Twitter E-mail

General

Target

71433d17af5287e9fb6b08dc5ef0630417e5d67ade2cbf5b5b054bf49e62bba1
Size

215KB
MD5

8104a811cf438827a8d0111557e63136
SHA1

c7793eb9bbbcf0aee245e66cf38fe056e007cccc
SHA256

71433d17af5287e9fb6b08dc5ef0630417e5d67ade2cbf5b5b054bf49e62bba1
SHA512

7bc1db2547c8d84c0bdb35a5e3dc55eb454814b8067aa23162a2e061369a603b44afbba05fd757eceb41ea525ac62b48a13165d57f3927bac255fbb61966e4cf
SSDEEP

6144:EHqE/dFiwXDOkojSAKiAZ289eBf+GjWnkGOo3z:s/dF1XakcMbdeF+Tdrz

Score

N/A

Malware Config

Signatures

Files

71433d17af5287e9fb6b08dc5ef0630417e5d67ade2cbf5b5b054bf49e62bba1
.exe windows x86

b28a74ecc2bc899456c436fb3990c201

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strncpy
_setmode
atexit
fwrite
_strnicmp
_exit
__setusermatherr
fprintf
strchr
__getmainargs
__p__commode
_errno
calloc
getenv
free
_adjust_fdiv
__set_app_type
strrchr
strstr
_except_handler3
_acmdln
_initterm
memmove
__p__fmode
_XcptFilter
sqrt

comdlg32

GetOpenFileNameA

kernel32

CreateProcessA
IsValidCodePage
SetErrorMode
GetEnvironmentVariableA
FileTimeToLocalFileTime
IsBadWritePtr
GlobalReAlloc
lstrcpynA
GetSystemDirectoryW
InterlockedExchange
GetStartupInfoA
LCMapStringW
GetCommandLineA
DeviceIoControl
GetNumberFormatA
VirtualProtectEx
FormatMessageA
InterlockedDecrement

user32

EmptyClipboard
GetDCEx
CreateMenu
GetSystemMenu
RemovePropA
SetClassLongA
IntersectRect
ShowCursor
MessageBoxA
DrawIconEx
GetSysColor
GetDlgItem
SetDlgItemTextA
LoadStringA
GetScrollRange

ole32

CoRegisterMessageFilter
OleIsCurrentClipboard
CoTaskMemRealloc
OleInitialize
OleSetMenuDescriptor
ReleaseStgMedium
CreateBindCtx
CoInitialize
CLSIDFromProgID
OleUninitialize
RevokeDragDrop

advapi32

OpenServiceW
AddAccessAllowedAce
RegOpenKeyExW
SetSecurityDescriptorGroup
RegCreateKeyExW
RegFlushKey
RegEnumKeyW
AdjustTokenPrivileges
RegQueryInfoKeyA
CloseServiceHandle
RegOpenKeyA
GetTokenInformation
CopySid
FreeSid
RegSetValueExW
RegCreateKeyExA
InitializeSecurityDescriptor

gdi32

GetWindowExtEx
IntersectClipRect
GetBitmapBits
SetDIBColorTable
SetDIBits
CreatePolygonRgn
Escape
CloseEnhMetaFile
CreateBitmap
TranslateCharsetInfo
ExtCreatePen
GetRegionData
SetTextJustification
EnumMetaFile
SetTextColor

comctl32

ImageList_DragShowNolock
PropertySheetA
ImageList_AddMasked
ImageList_Replace
ImageList_GetBkColor
CreatePropertySheetPageA
ImageList_Remove
ImageList_GetIcon
ImageList_GetImageCount

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 54KB - Virtual size: 197KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b28a74ecc2bc899456c436fb3990c201

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

advapi32

gdi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 54KB - Virtual size: 197KB

.rsrc Size: 154KB - Virtual size: 153KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 54KB - Virtual size: 197KB

.rsrc
Size: 154KB - Virtual size: 153KB