758135f73262d8c8fd5841957824e7f47dfc40e8261a56173a8ba6b07829e2f0

Sharing

Copy URL Twitter E-mail

General

Target

758135f73262d8c8fd5841957824e7f47dfc40e8261a56173a8ba6b07829e2f0
Size

139KB
MD5

a35657cf515eab7bce60f1071b617243
SHA1

10829b4280c13052d676111f06c60b588171ed23
SHA256

758135f73262d8c8fd5841957824e7f47dfc40e8261a56173a8ba6b07829e2f0
SHA512

a0ba6192d14c53991e4a9215ea593d8b3722c50645fb07f9d1592ccf2f5e0ff067121a7e239e88a78a69784ef3f922f02f9d35407a696305f39d99f0ebb3c3cf
SSDEEP

3072:51rBVUcZrcbNbcrfJnKofcFSpnu4N85WWWMMVWmmwTHVRq3:HjUrbYzf+oPnPRmI

Score

N/A

Malware Config

Signatures

Files

758135f73262d8c8fd5841957824e7f47dfc40e8261a56173a8ba6b07829e2f0
.exe windows x86

449a00a99fcb16b6530f5692157c536f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

InterlockedExchange
GetTempPathW
GetFileAttributesA
VirtualProtect
SetCurrentDirectoryA
GetStartupInfoA
GetSystemTime
FileTimeToLocalFileTime
IsValidCodePage
GetDiskFreeSpaceA
WriteConsoleA
GetModuleHandleA
GetLastError
GetThreadLocale
GetEnvironmentStringsW

msvcrt

_initterm
_fstat
fseek
__setusermatherr
__lc_codepage
log
puts
_amsg_exit
cos
__set_app_type
_acmdln
__p__commode
_XcptFilter
__getmainargs
_adjust_fdiv
ungetc
_except_handler3
__p__fmode
exit
fread
_wfopen
strcspn

user32

UnregisterClassA
GetCursorPos
WindowFromPoint
EnumWindows
GetMessagePos
CreateMenu
ScrollWindow

ole32

OleSetMenuDescriptor
ProgIDFromCLSID
CoInitialize
RegisterDragDrop
StringFromGUID2
CoRegisterMessageFilter
OleUninitialize
PropVariantClear
CoTaskMemAlloc
CoReleaseMarshalData
OleDraw

comctl32

ImageList_DragEnter
ImageList_BeginDrag
ImageList_Read
ImageList_DragShowNolock
InitCommonControlsEx
InitCommonControls

gdi32

CreateICA
GetStockObject
GetWindowExtEx
GetWindowOrgEx
SetDIBits
GetDeviceCaps
GetBkColor
SetAbortProc
GetTextExtentExPointW

shell32

SHGetDesktopFolder
SHGetFileInfo
SHBrowseForFolderA
SHGetDiskFreeSpaceExW
FindExecutableW
DragAcceptFiles
ShellExecuteEx
DoEnvironmentSubstW
ExtractIconExW
SHGetFileInfoA
SHGetPathFromIDListA

advapi32

RegQueryValueExA
CryptHashData
GetUserNameA
RegOpenKeyW
RegCreateKeyA
RegOpenKeyExA
GetSecurityDescriptorDacl

oleaut32

SafeArrayPutElement
SafeArrayCreate
LoadTypeLib
SafeArrayPtrOfIndex
SetErrorInfo
CreateErrorInfo
SafeArrayGetUBound
VariantCopy

version

GetFileVersionInfoW
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerInstallFileA

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

449a00a99fcb16b6530f5692157c536f

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

comctl32

gdi32

shell32

advapi32

oleaut32

version

Sections

.text Size: 64KB - Virtual size: 64KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 64KB - Virtual size: 64KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 25KB - Virtual size: 24KB