32ea60a94c1f9cf7db998acfb8a105a6d50bf7a39e280bad3e12fd71c7405a8a

Sharing

Copy URL Twitter E-mail

General

Target

32ea60a94c1f9cf7db998acfb8a105a6d50bf7a39e280bad3e12fd71c7405a8a
Size

91KB
MD5

81fc09c8358fdd9e13be34130f6b31e8
SHA1

1c1fe3baa516cd53d1f2fd60430a56324985dee0
SHA256

32ea60a94c1f9cf7db998acfb8a105a6d50bf7a39e280bad3e12fd71c7405a8a
SHA512

d61a99a7a8573f1d48e259f203c5eecc5e017905692533b9afe4f641452630aebe9fdf590c5a6b37465a10c9203fb09db56dc0c6ff05626aa8ef1bd4322a1dfa
SSDEEP

1536:0ludbAd9RedmCRohb5WjYgIduftsxefhm63rhuyUrDCXcsOcEPh+OZvhK+ywowQD:agdmCRohb0sgVftsxohn3DBV2vhK+No7

Score

N/A

Malware Config

Signatures

Files

32ea60a94c1f9cf7db998acfb8a105a6d50bf7a39e280bad3e12fd71c7405a8a
.exe windows x86

58e4ef719225e4932508f44d2e814ccb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
free
exit
_initterm
_adjust_fdiv
atoi
__set_app_type
sqrt
__getmainargs
__p__commode
_exit
_except_handler3
__p__fmode
strchr
_snprintf
__setusermatherr
calloc
getenv
_strnicmp
_acmdln

kernel32

lstrcmpiW
GetSystemDirectoryA
SetCurrentDirectoryA
GetACP
GetModuleHandleW
GetFullPathNameA
IsValidCodePage
GetTempPathA
GetStartupInfoA
ReadFile
CompareStringA
FreeLibrary
IsBadCodePtr
WriteFile
DeviceIoControl

user32

WinHelpA
DispatchMessageA
LoadCursorA
GetSysColorBrush
GetTopWindow
DrawIcon
DefWindowProcA
GetLastActivePopup
GetForegroundWindow

advapi32

SetSecurityDescriptorDacl
RevertToSelf
RegDeleteValueW
RegQueryInfoKeyW
RegFlushKey
GetUserNameA
FreeSid
OpenThreadToken
RegEnumValueA
LookupPrivilegeValueW
GetSecurityDescriptorDacl
OpenServiceA
RegSetValueExW
CryptGenRandom

gdi32

GetTextMetricsW
GetPaletteEntries
CreateRectRgn
SetMapperFlags
GetRegionData
GetMapMode
GetObjectW
GetCharWidthW
MaskBlt
CreateICA
DeleteEnhMetaFile

comctl32

ImageList_DrawEx
CreateStatusWindowA
ImageList_GetIconSize
ImageList_Destroy
InitCommonControls
ImageList_Draw
ImageList_SetIconSize
ImageList_Add
ImageList_SetDragCursorImage
CreatePropertySheetPageW
ImageList_DragLeave
ImageList_AddMasked
ImageList_LoadImageA
PropertySheetA
ImageList_DragShowNolock
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_GetImageCount

ole32

CreateItemMoniker
OleInitialize
CoLoadLibrary
IsAccelerator
CoRegisterMessageFilter
CoSetProxyBlanket
CoTaskMemFree
CLSIDFromString
RegisterDragDrop
CreateStreamOnHGlobal

oleaut32

SysReAllocStringLen
VariantInit
SysStringByteLen
SafeArrayPutElement
SafeArrayGetUBound
SysAllocStringByteLen
SafeArrayPtrOfIndex

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58e4ef719225e4932508f44d2e814ccb

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

gdi32

comctl32

ole32

oleaut32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 3KB - Virtual size: 2KB