509d76d14a337804a257ae9fd2df5efcd42e499d056ef3ecf7de54c0aa2e87f5

Sharing

Copy URL

Twitter E-mail

General

Target

509d76d14a337804a257ae9fd2df5efcd42e499d056ef3ecf7de54c0aa2e87f5
Size

99KB
MD5

85000f15bc91b9d5d99f9ab392b66966
SHA1

9c0aee44b91ef4c4fd810c68d4e9757a21337b47
SHA256

509d76d14a337804a257ae9fd2df5efcd42e499d056ef3ecf7de54c0aa2e87f5
SHA512

1b5853ec14e450574551cb902e8c3bc45ee54a043ad18aca7849cfd62b70a1a2977bf9c1c5a59c7d1da22a46bc2b8ff6ee78faa1ab0fc151d0ba0707508b4816
SSDEEP

1536:8mGg8YMBa4DM0LrfIJpQBDjBgRJsXzA9rp3plIMn2UwalMwoiVzqdftGE:hCjMvAIJOhgFhpZqMn2ValgIzNE

Score

N/A

Malware Config

Signatures

Files

509d76d14a337804a257ae9fd2df5efcd42e499d056ef3ecf7de54c0aa2e87f5
.exe windows x86

b0330d1ac6e84e92b02f2fdde131f035

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
__set_app_type
_except_handler3
calloc
fclose
_adjust_fdiv
memmove
__getmainargs
sinh
_exit
_iob
fflush
free
_XcptFilter
_controlfp
__setusermatherr
__p___initenv
__p__fmode
_initterm
__p__commode

comdlg32

GetOpenFileNameA

kernel32

SetCurrentDirectoryA
LCMapStringA
GetStdHandle
GetStartupInfoW
GetCurrentProcessId
IsBadReadPtr
IsDebuggerPresent
GetCurrentThreadId
CompareFileTime
GlobalFree
SystemTimeToFileTime
InterlockedDecrement
RemoveDirectoryA
RtlUnwind
GetShortPathNameA
ExpandEnvironmentStringsA
LocalAlloc
GetNumberFormatA

user32

DestroyIcon
RegisterClassA
SetScrollPos
SetWindowPlacement
EnumThreadWindows
GetMenuStringA
IsWindowVisible
ClientToScreen
BeginPaint
GetCapture
FrameRect
CreateWindowExA
GetScrollRange
ShowWindow
SetDlgItemTextA
MessageBoxA
EnableWindow

advapi32

CloseServiceHandle
AddAccessAllowedAce
OpenSCManagerA
AllocateAndInitializeSid
SetSecurityDescriptorOwner
RegDeleteKeyA
FreeSid
QueryServiceStatus
LookupPrivilegeValueW
GetSecurityDescriptorDacl
GetLengthSid
DeleteService
RegEnumValueA
RegQueryInfoKeyW
RegQueryValueExA
RegOpenKeyA

gdi32

GdiFlush
SelectClipPath
CreatePalette
GetTextMetricsW
ArcTo
SaveDC
ExtFloodFill
LineTo
CreateRectRgnIndirect
SetAbortProc
GetCharacterPlacementA
StartDocA
SetWindowOrgEx
GetOutlineTextMetricsA
EnumFontFamiliesExW
PlayMetaFileRecord

ole32

IIDFromString
OleGetClipboard
OleSetMenuDescriptor
IsAccelerator
OleUninitialize
StgOpenStorageOnILockBytes
CoCreateInstance
StgOpenStorage
OleRun
OleInitialize

comctl32

ImageList_Create
ImageList_Replace
ImageList_SetIconSize
ImageList_DragLeave
ImageList_SetDragCursorImage
ImageList_SetImageCount
ImageList_GetIconSize
ImageList_Draw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0330d1ac6e84e92b02f2fdde131f035

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

advapi32

gdi32

ole32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 28KB - Virtual size: 27KB