9c854248766adce6562518ce12c476fdfe888b1edbf561aea582bf61f234716a

Sharing

Copy URL Twitter E-mail

General

Target

9c854248766adce6562518ce12c476fdfe888b1edbf561aea582bf61f234716a
Size

98KB
MD5

097b9b1ceb4c8f9a5661a2a4e03789e4
SHA1

4a042d349a034409a77be36e40a4069400568cb0
SHA256

9c854248766adce6562518ce12c476fdfe888b1edbf561aea582bf61f234716a
SHA512

26dc9ba4668d09430e0dd291bffd6efea3e3442e077915e24d8a58f687ab0ae19718ff67521bc0c0ffa7ac63ac8d3fc58700f04283dbc6a62aac6f3e20feb45e
SSDEEP

1536:owOGpaYV4BWr1PL8qm5BYN8iO+Mb1LEgTTrNKSyTNJ+6dA1GHaTuDu3oT1kMF4zI:p6W5yBYG/+MbFpT5eTeDwefC740

Score

N/A

Malware Config

Signatures

Files

9c854248766adce6562518ce12c476fdfe888b1edbf561aea582bf61f234716a
.exe windows x86

92622e215989bf0d3a29f4ed453efe90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
_snprintf
strrchr
__setusermatherr
__p__environ
__set_app_type
sqrt
_acmdln
strncpy
strchr
_except_handler3
__p__commode
__getmainargs
realloc
_initterm
free
atexit
_vsnprintf
__p__fmode
_exit
_adjust_fdiv
fread
abort
calloc
malloc

comdlg32

GetOpenFileNameA

kernel32

CompareFileTime
GetStartupInfoA
VirtualFree
GetStartupInfoW
GetCommandLineW
InterlockedDecrement
DeviceIoControl
VirtualAlloc
lstrcpyA
GlobalReAlloc
GetConsoleOutputCP
GlobalUnlock
GetACP
GetTempPathW
IsDBCSLeadByte
WaitForMultipleObjects
GetTempPathA
FlushFileBuffers
GetNumberFormatA
GetFileAttributesW

user32

LoadStringA
GetPropA
GetClassInfoA
GetMenuItemID
EnumWindows
SetTimer
SetActiveWindow
SetDlgItemTextA
SetScrollInfo
IsIconic
GetKeyboardType
GetClassNameA
UnregisterClassA
GetTopWindow
GetMessagePos
GetWindow
GetScrollInfo
GetSysColor
ScreenToClient

gdi32

EndDoc
AddFontResourceA
GetTextExtentPoint32A
GetBkMode
PolylineTo
GetTextMetricsA
CreatePolygonRgn
DeleteObject
PtInRegion
CreateDIBPatternBrushPt
CreateFontIndirectW

comctl32

PropertySheetA
ImageList_SetImageCount
CreatePropertySheetPageA
InitializeFlatSB
CreateStatusWindowA
ImageList_Destroy
CreateToolbarEx
ImageList_DrawEx
ImageList_Remove
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_Read
PropertySheetW

ole32

StgCreateDocfileOnILockBytes
StringFromIID
PropVariantClear
OleInitialize
IsAccelerator
CoInitialize
ReleaseStgMedium
DoDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
CoGetInterfaceAndReleaseStream

advapi32

CopySid
InitiateSystemShutdownA
SetSecurityDescriptorOwner
RegEnumValueW
RegOpenKeyExA
RegEnumValueA
InitializeSecurityDescriptor
RegQueryInfoKeyW
AddAccessAllowedAce

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

92622e215989bf0d3a29f4ed453efe90

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

comctl32

ole32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 48KB

.rsrc Size: 83KB - Virtual size: 88KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 48KB

.rsrc
Size: 83KB - Virtual size: 88KB