49e33791813afecd932abc49530168a5559487510fc25da5b331b289e3bf746f

Sharing

Copy URL

Twitter E-mail

General

Target

49e33791813afecd932abc49530168a5559487510fc25da5b331b289e3bf746f
Size

488KB
MD5

840603fc5d954170d77801797a0ba4eb
SHA1

36ffe76f4fd779d50896ebfe4e5871a484cf7d2f
SHA256

49e33791813afecd932abc49530168a5559487510fc25da5b331b289e3bf746f
SHA512

a2722c0c9d20355aa6bc2b7ed9c0cb7861776bd0006a5c3f021b3d06a6121c38247e97f23f951da91b89e89d5d0b0ed146acd18c69156b0e86f7c1677ae0f437
SSDEEP

6144:QReKLKb0yL74TZCynrd8UsPYR2G9dI1zYyfmXAGGy87b+KPnmx/NW+UgbiHe2g+:QkKLKbJX/yd8F6O1zrmwG987K5Nfl

Score

N/A

Malware Config

Signatures

Files

49e33791813afecd932abc49530168a5559487510fc25da5b331b289e3bf746f
.exe windows x86

f6c719536d5ec3d0f17fd4668ef32802

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
ReadFile
WriteConsoleW
CreateFileA
TlsGetValue
CompareStringW
SetUnhandledExceptionFilter
LCMapStringW
LoadLibraryA
DeleteCriticalSection
GetStdHandle
GetStringTypeA
VirtualQuery
GetCurrentThreadId
ExitProcess
HeapCreate
TlsSetValue
FlushFileBuffers
FreeEnvironmentStringsW
GetDateFormatA
LeaveCriticalSection
GetTimeZoneInformation
CloseHandle
SetStdHandle
GetStartupInfoW
GetFileType
GetCommandLineW
RtlUnwind
CreateMutexW
GetCPInfo
TerminateProcess
WriteFile
WriteConsoleA
IsValidCodePage
GetStringTypeW
EnterCriticalSection
GetTimeFormatA
VirtualAlloc
GetModuleHandleA
TlsAlloc
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
HeapSize
GetModuleFileNameW
HeapReAlloc
Sleep
SetEnvironmentVariableA
GetConsoleCP
HeapAlloc
InterlockedDecrement
TlsFree
SetHandleCount
GetOEMCP
IsDebuggerPresent
SetFilePointer
GetLastError
LoadLibraryW
GetTickCount
MultiByteToWideChar
GetConsoleMode
GetModuleFileNameA
WaitForSingleObject
WideCharToMultiByte
GetEnvironmentStringsW
RaiseException
SetLastError
QueryPerformanceCounter
CompareStringA
GetCurrentProcess
VirtualFree
GetProcAddress
GetModuleHandleW
GetStartupInfoA
HeapFree
UnhandledExceptionFilter
LocalFree
InitializeCriticalSectionAndSpinCount
GetConsoleOutputCP
InterlockedIncrement
InterlockedExchange
GetLocaleInfoA

version

GetFileVersionInfoA
VerQueryValueA

comdlg32

ChooseFontA
PrintDlgA

advapi32

QueryServiceConfigA
RegCloseKey
GetUserNameA
CreateServiceA
RegSetValueExA
RegQueryValueExA

shell32

SHGetMalloc
SHGetSpecialFolderPathA
Shell_NotifyIconA
SHGetFileInfoA
SHFileOperationA
SHBrowseForFolderA
SHGetPathFromIDListA
ord155
DragFinish
SHGetSpecialFolderLocation
ShellExecuteA
DragAcceptFiles
DragQueryFileA
SHChangeNotify

ole32

CoTaskMemFree
CoCreateInstance
OleUninitialize
OleLockRunning
CoRevokeClassObject
OleIsCurrentClipboard
CoInitialize
CreateStreamOnHGlobal
OleInitialize
CLSIDFromProgID
CLSIDFromString
OleFlushClipboard
CoTaskMemAlloc
CoGetMalloc
CoCreateGuid
OleGetClipboard
OleDuplicateData
CoTaskMemRealloc
CoInitializeSecurity
RevokeDragDrop
CoInitializeEx

user32

ReleaseDC
TranslateMessage
LoadStringW
GetWindowThreadProcessId
BringWindowToTop
SetTimer
SetWindowPos
LoadIconW
GetWindowLongW
MessageBoxW
CopyRect
CreateWindowExW
SetForegroundWindow
GetSystemMetrics
KillTimer
DestroyWindow
GetForegroundWindow
GetSystemMenu
GetMenuItemCount
IsChild
ScreenToClient
UnhookWindowsHookEx
GetScrollInfo
SetScrollInfo
SetClipboardData
OpenClipboard
PtInRect
DeleteMenu
LoadCursorW
GetUpdateRect
DeferWindowPos
GetSubMenu
RemoveMenu
ShowWindow
DefWindowProcW
SetCapture
GetSysColorBrush
LockWindowUpdate
LoadAcceleratorsW
GetWindowPlacement
GetWindow
IsWindow
DestroyAcceleratorTable
GetLastActivePopup
GetKeyState
GetScrollPos
GetDlgCtrlID
ChildWindowFromPointEx
SendMessageW
RegisterClassExW
UnregisterClassA
GetDesktopWindow
IsRectEmpty
SetWindowLongW
SetRect
SetParent
CreateMenu
PostQuitMessage
GetWindowRect
InvalidateRect
IsWindowVisible
RegisterClassW
ShowScrollBar
GetMenu
GetMessagePos

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6c719536d5ec3d0f17fd4668ef32802

Headers

File Characteristics

Imports

kernel32

version

comdlg32

advapi32

shell32

ole32

user32

Sections

.text Size: 108KB - Virtual size: 106KB

.rdata Size: 268KB - Virtual size: 265KB

.data Size: 76KB - Virtual size: 90KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 108KB - Virtual size: 106KB

.rdata
Size: 268KB - Virtual size: 265KB

.data
Size: 76KB - Virtual size: 90KB

.rsrc
Size: 32KB - Virtual size: 30KB