aafff55da18047e8cf0cc586c8bd65d7f7e8e3759305ca0674ae2168506c4222

Sharing

Copy URL

Twitter E-mail

General

Target

aafff55da18047e8cf0cc586c8bd65d7f7e8e3759305ca0674ae2168506c4222
Size

152KB
MD5

486558340db304ab055deb495241c700
SHA1

0d30180d74371c193f2526b13c86530ce87dc8e0
SHA256

aafff55da18047e8cf0cc586c8bd65d7f7e8e3759305ca0674ae2168506c4222
SHA512

60f3030ee2c588c4a1c177a179ac5cd881bf3d6d74a5d7d3364298a86e9b70a0f9c903e460434709e2946a7e4df3eee07a81e7dce73b1df757a6657a16ccf248
SSDEEP

3072:57a7vlNQRc9dxR+qqWJjyfDYR90JE9ihTrvlPVD1UnZqbOCFvvSqo:57aWcftWf8R9069AP9P7Uhwo

Score

N/A

Malware Config

Signatures

Files

aafff55da18047e8cf0cc586c8bd65d7f7e8e3759305ca0674ae2168506c4222
.exe windows x86

d5a1c4659d7778f348fc7220b8d189c2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibClose
DrawDibDraw
DrawDibOpen
MCIWndCreateA
ord2

kernel32

LoadLibraryA
GetTempPathA
DeleteFileA
GetTempFileNameA
Sleep
GetModuleFileNameA
ReleaseMutex
GetLastError
CreateMutexA
MultiByteToWideChar
SetFilePointer
SetFileTime
SystemTimeToFileTime
GetSystemTime
GetModuleHandleA
CloseHandle
ReadFile
CreateFileA
MulDiv
GetProcAddress
RaiseException
OutputDebugStringA
WriteFile
lstrcpynA
GetDiskFreeSpaceA
FreeLibrary
GetStartupInfoA

user32

GetSystemMetrics
LoadIconA
RegisterClassA
CreateWindowExA
GetMessageA
PostQuitMessage
TranslateMessage
DispatchMessageA
DestroyWindow
LoadCursorA
BeginPaint
EndPaint
MoveWindow
ShowWindow
CopyRect
SendMessageA
LoadStringA
MessageBoxA
GetWindowDC
ReleaseDC
LoadImageA
SetCursor
DefWindowProcA

gdi32

StretchBlt
GetStockObject
CreateCompatibleBitmap
SetPixel
GetDIBColorTable
CreatePalette
CreateHalftonePalette
SelectPalette
RealizePalette
DeleteObject
CreateCompatibleDC
SelectObject
BitBlt
SetStretchBltMode
DeleteDC
GetObjectA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

msvcrt

strrchr
_beginthread
vsprintf
_except_handler3
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z
getenv
sscanf
fclose
fwrite
fseek
fread
tmpfile
??1type_info@@UAE@XZ
__dllonexit
_stricmp
_onexit
_exit
_XcptFilter
_acmdln
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__set_app_type
_controlfp
__p__fmode
_CxxThrowException
__getmainargs
strncpy
free
malloc
sprintf
_iob
fprintf
exit
_ftol

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d5a1c4659d7778f348fc7220b8d189c2

Headers

File Characteristics

Imports

msvfw32

kernel32

user32

gdi32

shell32

ole32

msvcrt

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 72KB - Virtual size: 72KB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 72KB - Virtual size: 72KB