a589728e02e05dc0f8940e358ed588db79ebf97481f3c784323f8828674dd6ec

Sharing

Copy URL

Twitter E-mail

General

Target

a589728e02e05dc0f8940e358ed588db79ebf97481f3c784323f8828674dd6ec
Size

81KB
MD5

939aca82c5f374f1d3f1601dc1850ad1
SHA1

c9a13271c0fe12a71664677059e51d81bfdd1f36
SHA256

a589728e02e05dc0f8940e358ed588db79ebf97481f3c784323f8828674dd6ec
SHA512

75b080c90a7700d0c9209a487c05dcd4e18ffaf2fbf757c531306f97ce3075b027325a5bf994bb99e9282ea08d12b5c905d3bdc757a4e1934d08e2a40c32f0c2
SSDEEP

1536:gHmXXRHga6rzTVEQ353JgxzSM95qzK5IP/K77QRI9+AsvjhIzcUf8hh:umxH073AfQjHKYIHsvjhIAUf83

Score

N/A

Malware Config

Signatures

Files

a589728e02e05dc0f8940e358ed588db79ebf97481f3c784323f8828674dd6ec
.exe windows x86

ca1d9b5fa708159236fc8133c39ef04c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetWindowTextA
EqualRect
GetSubMenu
GetScrollPos
SetWindowPos
UnhookWindowsHookEx
EnumWindows
GetSysColor
FrameRect
PostQuitMessage
EnableMenuItem
GetSysColorBrush
GetMessageA

kernel32

ExitProcess
GetTickCount
GetFileAttributesA
InterlockedExchange
SetUnhandledExceptionFilter
GetTimeZoneInformation
RtlUnwind
GetStartupInfoA
FileTimeToSystemTime
GetThreadLocale
GetCurrentProcessId
QueryPerformanceCounter
GetTempPathA
VirtualAllocEx

gdi32

GetMapMode
FillRgn
CreateICW
DPtoLP
CreateCompatibleBitmap
ExcludeClipRect
CopyEnhMetaFileA
SelectClipPath
SetViewportExtEx

ole32

OleRun
DoDragDrop
CoInitialize
StgOpenStorage
CoCreateInstance
CoInitializeSecurity
CoRevokeClassObject
StringFromGUID2
CoTaskMemRealloc

advapi32

QueryServiceStatus
CryptHashData
GetUserNameA
RegQueryValueExW
CheckTokenMembership
RegCreateKeyExW
GetSecurityDescriptorDacl
AdjustTokenPrivileges
FreeSid
RegCreateKeyA

msvcrt

__setusermatherr
signal
_lock
fflush
__getmainargs
__initenv
_mbscmp
fprintf
_flsbuf
iswspace
puts
strncpy
raise
strcspn
_strdup
strlen
_CIpow
_fdopen

comctl32

CreatePropertySheetPageA
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_SetIconSize
ImageList_GetIconSize
InitCommonControls
ImageList_LoadImageA
ImageList_Write
ImageList_DragEnter
ImageList_GetIcon
ImageList_DrawEx
ImageList_LoadImageW
ImageList_GetBkColor

shell32

CommandLineToArgvW
DragQueryFileW
ExtractIconW
DoEnvironmentSubstW
ShellExecuteEx
ExtractIconExW
DragAcceptFiles
SHBrowseForFolderA
ShellExecuteW
SHGetPathFromIDList
DragQueryFileA

oleaut32

SysReAllocStringLen
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayPtrOfIndex
SafeArrayCreate
SafeArrayPutElement
SafeArrayGetUBound
VariantCopy

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca1d9b5fa708159236fc8133c39ef04c

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 40KB - Virtual size: 39KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 40KB - Virtual size: 39KB

.rsrc
Size: 6KB - Virtual size: 5KB