beb3510bcb4e27cfa63c8f6e3b118ccad960e9a09c403354f2e024e76e16128e

Sharing

Copy URL

Twitter E-mail

General

Target

beb3510bcb4e27cfa63c8f6e3b118ccad960e9a09c403354f2e024e76e16128e
Size

89KB
MD5

5c274c5a27d2ac346286f3781125f080
SHA1

df43d1e8ab7a24e30586840f221d3e740db858ca
SHA256

beb3510bcb4e27cfa63c8f6e3b118ccad960e9a09c403354f2e024e76e16128e
SHA512

91b8aba9a3c7fcddce4087b0c2bf9b343148b324930a312ee2cb35ae72db243c919960b6c98192bdf861639a3afaada1900aa81b2b822c3d090c96ad7d5c53a3
SSDEEP

1536:jS7JYA47AgOeSNymHOP2/UZChFFdMoY7AIir3uCpoEXBe/RiIw3WNR6tBM2G:jCYAQAvFHl/UZCh5BY7OrupgBowIw3W1

Score

N/A

Malware Config

Signatures

Files

beb3510bcb4e27cfa63c8f6e3b118ccad960e9a09c403354f2e024e76e16128e
.exe windows x86

0b70e9041b00cc982cb15a863eca1b19

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetFolderPathA

advapi32

RegLoadKeyA
RegEnumValueA
RegQueryValueA
GetLengthSid

ole32

CoRegisterClassObject
WriteClassStm
CoTaskMemFree
CoDisconnectObject
CoCreateGuid
CoUninitialize

shlwapi

SHEnumValueA
SHStrDupA
PathGetCharTypeA
SHDeleteKeyA
SHQueryValueExA
SHQueryInfoKeyA
SHGetValueA
SHSetValueA
PathFileExistsA

comdlg32

ChooseColorA
GetOpenFileNameA

msvcrt

calloc
wcstol
rand
memcpy
memmove
clock
wcschr
_acmdln

gdi32

CreateBitmap

kernel32

lstrlenA
CreateEventA
ExitThread
GetModuleFileNameA
GetUserDefaultLCID
GetTickCount
GlobalAlloc
RaiseException
GetCurrentThread
VirtualAlloc
VirtualAllocEx
GetCPInfo
GetFileSize
LoadLibraryExA
GetFullPathNameA
GetLastError
lstrcmpiA
GetCurrentThreadId
lstrcmpiA
FreeLibrary
Sleep
GetOEMCP
GetCurrentProcess
ExitProcess
HeapAlloc
GetFileSize
SetHandleCount
SetFilePointer
SetLastError
lstrcatA
ReadFile
GetLastError
LocalAlloc
DeleteCriticalSection
CreateFileA

version

GetFileVersionInfoA

user32

GetSubMenu
CheckMenuItem
EndPaint
GetMenuItemInfoA
EqualRect
GetActiveWindow
RegisterClassA
GetCursorPos
IsDialogMessageA
GetScrollRange
DefWindowProcA
DispatchMessageA
IsWindowEnabled
GetDCEx
CallNextHookEx

Sections

.rdata
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b70e9041b00cc982cb15a863eca1b19

Headers

File Characteristics

Imports

shell32

advapi32

ole32

shlwapi

comdlg32

msvcrt

gdi32

kernel32

version

user32

Sections

.rdata Size: 30KB - Virtual size: 30KB

.bss Size: 47KB - Virtual size: 46KB

.init Size: 6KB - Virtual size: 6KB

BSS Size: 2KB - Virtual size: 1KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 571B

.rdata
Size: 30KB - Virtual size: 30KB

.bss
Size: 47KB - Virtual size: 46KB

.init
Size: 6KB - Virtual size: 6KB

BSS
Size: 2KB - Virtual size: 1KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 571B