c2d8b6c5d4b5991c0ee31bd77ffee7e9a33c6600916e51ba6b6c410173cb61d3

Sharing

Copy URL Twitter E-mail

General

Target

c2d8b6c5d4b5991c0ee31bd77ffee7e9a33c6600916e51ba6b6c410173cb61d3
Size

159KB
MD5

92eea9c2d0bf51ba54df3dce29b90a14
SHA1

663714ff636f7aab31205a62e51060de56ebf3c8
SHA256

c2d8b6c5d4b5991c0ee31bd77ffee7e9a33c6600916e51ba6b6c410173cb61d3
SHA512

07d86ffff873d62ab6aa75df954fb2b24c0dd3f81da210e054f148a83cabeca787311cc802481d36017e7523158fd043f89aa38618467b2cacfed9b42eb385da
SSDEEP

3072:tFvg/Zp8tDU9roS3iyrv6kuSLX9CcT5kb1nXwBQtEaOjNpQYjVVB2OreZHSNaoip:a8tDU9rZ3iyz6kuSWXwHpQMfqZHSoosN

Score

N/A

Malware Config

Signatures

Files

c2d8b6c5d4b5991c0ee31bd77ffee7e9a33c6600916e51ba6b6c410173cb61d3
.exe windows x86

48e805ea081d2302de5486c80f34c151

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

wcsncat
strtoul
wcscspn
free
malloc
wcsspn

advapi32

RegCloseKey
RegSetValueExW
RegEnumKeyW
RegOpenKeyExW
RegQueryValueExW
RegEnumValueW

kernel32

lstrcpynW
CloseHandle
CreateFileW
CreateDirectoryW
GetPrivateProfileStringW
WritePrivateProfileStringW
lstrcpyW
GetCommandLineW
lstrcmpiW
DeleteFileW
SetFileAttributesW
CopyFileW
WriteFile
ReadFile
GetFileSize
GetFileAttributesW
GetLastError
SetErrorMode
SizeofResource
LockResource
LoadResource
FindResourceW
LoadLibraryExW
lstrlenA
GetLongPathNameW
ExpandEnvironmentStringsW
lstrcmpW
GetProcAddress
LoadLibraryW
lstrcmpiA
SetFilePointer
GetPrivateProfileIntW
WideCharToMultiByte
FindClose
FindNextFileW
FindFirstFileW
GetCurrentDirectoryW
GetWindowsDirectoryW
ExitProcess
GetStartupInfoA
GetModuleHandleW
LocalAlloc
LocalFree
lstrcatW
lstrlenW
GetTempPathW
CreateProcessW

gdi32

GetDeviceCaps
CreateCompatibleDC
GetMapMode
CreateSolidBrush
SelectObject
BitBlt
SetMapMode
DeleteDC
DeleteObject
CreateFontIndirectW

user32

IsWindowEnabled
SystemParametersInfoW
InvalidateRect
GetParent
wsprintfA
SetWindowLongW
DrawEdge
SetWindowTextW
GetSystemMetrics
FillRect
OffsetRect
GetSysColorBrush
FrameRect
InflateRect
DrawFocusRect
SetFocus
GetWindowRect
GetSysColor
IsDlgButtonChecked
CharUpperW
CheckDlgButton
EnumWindows
EnableWindow
GetDlgItem
GetWindowLongW
PostMessageW
GetClassNameW
SendMessageW
MessageBoxW
CallWindowProcW
DefWindowProcW
ReleaseDC
BeginPaint
EndPaint
IsWindow
MsgWaitForMultipleObjects
PeekMessageW
DispatchMessageW
GetDC
GetClientRect
LoadStringW

shlwapi

SHSetValueW
PathCanonicalizeW
PathRelativePathToW
PathCombineW
ord217
StrToIntExW
ord441
ord346
ord215
ord294
ord295
StrChrW
PathFindFileNameW
StrCmpIW
PathMakeSystemFolderW
StrCpyNW
SHRegisterValidateTemplate
PathRemoveFileSpecW
StrStrIW
PathUnExpandEnvStringsW
wnsprintfW
StrCmpNIW
StrCpyW
StrCatBuffW
PathAppendW
PathFindExtensionW
SHGetValueW
PathIsDirectoryW

comctl32

CreatePropertySheetPageW
ord320
ord324
ord321
PropertySheetW
ord322

shell32

ord709
ord42
SHGetFolderPathW
SHChangeNotify
ShellExecuteExW

ole32

StringFromGUID2
CoCreateInstance
CoInitialize
CoUninitialize

comdlg32

GetOpenFileNameW
ChooseColorW

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

48e805ea081d2302de5486c80f34c151

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

shlwapi

comctl32

shell32

ole32

comdlg32

Sections

.text Size: 25KB - Virtual size: 25KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 95KB - Virtual size: 96KB

.text
Size: 25KB - Virtual size: 25KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 95KB - Virtual size: 96KB