4580222c45013a88f31af7dcdb7f57719b0ec566204024540015ab1f9bbb6f2e

Sharing

Copy URL Twitter E-mail

General

Target

4580222c45013a88f31af7dcdb7f57719b0ec566204024540015ab1f9bbb6f2e
Size

98KB
MD5

7fa77b8ff355adb6b33838b84403d798
SHA1

7b444fa902669e5a3f7ebcb657e011909378638e
SHA256

4580222c45013a88f31af7dcdb7f57719b0ec566204024540015ab1f9bbb6f2e
SHA512

61cc73216f59a431d7b771ca6100cecdfcb2cc7798e756f06fe54968ea45cf5a6d5ae32ade0488571bd6e41b2079babfdeded891e76814e5190d86cd90d582ea
SSDEEP

3072:9j4zevJiHPtgvvqxNYNNdZwOQkdJlylP64wN:R4zOxvuK6zeJQPMN

Score

N/A

Malware Config

Signatures

Files

4580222c45013a88f31af7dcdb7f57719b0ec566204024540015ab1f9bbb6f2e
.exe windows x86

a2a5b30764b3645de78337eb36b084e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

__set_app_type
__setusermatherr
_except_handler3
_initterm
__dllonexit
_exit
_acmdln
_cexit
__getmainargs
__p__fmode
free
fclose
__p__commode
malloc
calloc
_XcptFilter
atan
exit
printf
_adjust_fdiv
strcmp

kernel32

GlobalFree
GetModuleFileNameW
GetUserDefaultLangID
SetEnvironmentVariableA
GetStartupInfoA
GlobalAlloc
GetStdHandle

advapi32

SetSecurityDescriptorDacl
RegDeleteValueW
CryptDestroyHash
GetUserNameA
GetTokenInformation
QueryServiceStatus
CloseServiceHandle
RegEnumKeyA
RegQueryValueExA
InitiateSystemShutdownA

oleaut32

SysAllocStringLen
SafeArrayCreate
CreateErrorInfo
SafeArrayRedim
VariantInit
SysStringByteLen
SysAllocStringByteLen
VariantCopy
SafeArrayPtrOfIndex

comctl32

ImageList_Destroy
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_GetBkColor

user32

KillTimer
CharLowerA
GetCursorPos
PostQuitMessage
GetSysColorBrush
IsWindowEnabled

gdi32

DeleteDC
CreateEllipticRgn
CreateCompatibleBitmap
CreateFontIndirectA
GetTextExtentPointW
BitBlt
CreateFontA

shell32

ExtractIconExW
SHChangeNotify
SHBrowseForFolder
SHCreateDirectoryExW
ExtractAssociatedIconW
SHGetFolderPathW
SHCreateDirectoryExA
SHAppBarMessage

ole32

CoInitialize
CoLoadLibrary

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2a5b30764b3645de78337eb36b084e4

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

advapi32

oleaut32

comctl32

user32

gdi32

shell32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 62KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 62KB

.rsrc
Size: 28KB - Virtual size: 27KB