012afba6c54b44a896b6c03f65b341a9305b1f840a1a3bc1b4cf6202173e5e93

Sharing

Copy URL Twitter E-mail

General

Target

012afba6c54b44a896b6c03f65b341a9305b1f840a1a3bc1b4cf6202173e5e93
Size

137KB
MD5

968d1ad3148d57ab77e8c3ee372bbdee
SHA1

513ec2235e9383c26e54108b8b18dac98637c9d9
SHA256

012afba6c54b44a896b6c03f65b341a9305b1f840a1a3bc1b4cf6202173e5e93
SHA512

2ff7ec98affdd938332b75053fa093c1ba559bbcffb5bd1afcfa57746c239c415e4405e37d16c70f53c19fc98ebe42cc73ffd754b9411126a01e704eefa71034
SSDEEP

3072:8hXaG7sP8jpjv2E9/LXwWAv4krvVw4lWyTj4WcmITcCsB:v58xv2E9/Ld5krvVblWyTy

Score

N/A

Malware Config

Signatures

Files

012afba6c54b44a896b6c03f65b341a9305b1f840a1a3bc1b4cf6202173e5e93
.exe windows x86

216ae5b9b7f555f779863aa4f4bb9612

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetModuleHandleA
QueryPerformanceCounter
SetFilePointer
GetFileAttributesA
GetStartupInfoA
MulDiv

msvcrt

printf
strstr
atof
_except_handler3
_adjust_fdiv
__setusermatherr
localeconv
strspn
strchr
longjmp
__p__fmode
_XcptFilter
log
exit
_initterm
__set_app_type
__getmainargs
sprintf
_acmdln
__p__commode
_wcsnicmp

user32

OpenClipboard
CallNextHookEx
RegisterClassA
DestroyMenu
IsWindowVisible
GetCursorPos
UnregisterClassA
SetScrollRange
SendMessageA

version

VerQueryValueW
VerInstallFileA
VerFindFileW
VerQueryValueA
VerInstallFileW
GetFileVersionInfoA

advapi32

InitiateSystemShutdownA
AllocateAndInitializeSid
RegEnumKeyW
RegEnumKeyA
FreeSid
DeregisterEventSource
RegEnumValueA
CryptHashData
CopySid
OpenServiceA
CryptAcquireContextA
CloseServiceHandle

shell32

DragQueryFileW
SHGetSpecialFolderLocation
ShellExecuteW
ShellExecuteEx
CommandLineToArgvW
SHBrowseForFolderW
SHGetFolderPathW
SHGetPathFromIDListW

gdi32

CreateCompatibleDC
EnumFontsA
AbortDoc
GetObjectA
GetEnhMetaFilePaletteEntries
SetDIBColorTable
PlayMetaFile

ole32

OleDraw
CoGetMalloc
CoInitializeSecurity
ProgIDFromCLSID

comctl32

ImageList_LoadImageA
ImageList_GetBkColor
ImageList_Destroy
ImageList_SetImageCount
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Read
PropertySheetA
CreatePropertySheetPageA
ImageList_Draw

oleaut32

SafeArrayPutElement
SafeArrayGetUBound
GetErrorInfo
SysReAllocStringLen
LoadTypeLib

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

216ae5b9b7f555f779863aa4f4bb9612

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

version

advapi32

shell32

gdi32

ole32

comctl32

oleaut32

Sections

.text Size: 63KB - Virtual size: 63KB

.data Size: 48KB - Virtual size: 47KB

.rsrc Size: 25KB - Virtual size: 28KB

.text
Size: 63KB - Virtual size: 63KB

.data
Size: 48KB - Virtual size: 47KB

.rsrc
Size: 25KB - Virtual size: 28KB