943d2945e43a42ef2db81a5f3f1f48aab87778eb082dd69505c64509eb21ae79

Sharing

Copy URL Twitter E-mail

General

Target

943d2945e43a42ef2db81a5f3f1f48aab87778eb082dd69505c64509eb21ae79
Size

169KB
MD5

3446af8e5c3dde3a8da18abf601eb42c
SHA1

35e9828dc62ef81018dd6e56768d293dad2482ab
SHA256

943d2945e43a42ef2db81a5f3f1f48aab87778eb082dd69505c64509eb21ae79
SHA512

ae63d5a14363270c06f2f024a889edb7a72ecfb2efefa7e507940e4ee8d5925556f862ab2efb836643c26f6401d1788add04db49064eb91d7ed968f5c832104a
SSDEEP

3072:AG2sjf+sC6h3/hZe83A+Q93T1hbqPLZyUkf0QAXyoWLYhx0sMZUdqGO:AsvC6FLB3cT1gPVyUks1KY3PMZUdqn

Score

N/A

Malware Config

Signatures

Files

943d2945e43a42ef2db81a5f3f1f48aab87778eb082dd69505c64509eb21ae79
.exe windows x86

49deeb32ef7c3dcd8850550b31a0710e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

StgCreateDocfileOnILockBytes
CoUnmarshalInterface
CreateOleAdviseHolder
CreateBindCtx
CoCreateFreeThreadedMarshaler
GetHGlobalFromStream

user32

wsprintfA
IsWindowVisible
DrawTextA
RegisterClipboardFormatA
GetKeyNameTextA
InsertMenuItemA
GetDesktopWindow
CharLowerBuffA
GetDC
SetRect
SetWindowLongA
GetScrollRange
DrawFrameControl
RedrawWindow
GetKeyboardType
MapVirtualKeyA
BeginPaint
InsertMenuA
GetActiveWindow
GetMenuItemCount
IsChild
EmptyClipboard
RegisterWindowMessageA

gdi32

SelectObject
CopyEnhMetaFileA
CreatePalette
CreateBrushIndirect

version

VerFindFileA
VerQueryValueA

shell32

DragQueryFileA
SHGetFolderPathA
Shell_NotifyIconA

advapi32

RegLoadKeyA
GetUserNameA
RegCreateKeyA

comdlg32

GetOpenFileNameA
FindTextA

kernel32

CreateFileA
VirtualQuery
VirtualAllocEx
ExitProcess
lstrcpyA
DeleteCriticalSection
GetCommandLineA
ExitThread
GetFullPathNameA
GetLastError
VirtualAlloc
GlobalFindAtomA
ResetEvent
GetModuleHandleA
lstrlenA
GetVersionExA
GetProcAddress

Sections

CODE
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 133KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

49deeb32ef7c3dcd8850550b31a0710e

Headers

File Characteristics

Imports

ole32

user32

gdi32

version

shell32

advapi32

comdlg32

kernel32

Sections

CODE Size: 26KB - Virtual size: 26KB

.tls Size: 133KB - Virtual size: 177KB

.rdata Size: 4KB - Virtual size: 3KB

.edata Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 1KB

CODE
Size: 26KB - Virtual size: 26KB

.tls
Size: 133KB - Virtual size: 177KB

.rdata
Size: 4KB - Virtual size: 3KB

.edata
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 1KB