fb3fd97bd2e95562718ba8a850751c1d5774a5cf88b3638743b236b231b50e42

Sharing

Copy URL Twitter E-mail

General

Target

fb3fd97bd2e95562718ba8a850751c1d5774a5cf88b3638743b236b231b50e42
Size

103KB
MD5

83705593fd09d7897f3b94a87a782dcd
SHA1

2193a8ec6a4586da5e255d589cc48ef0abebc350
SHA256

fb3fd97bd2e95562718ba8a850751c1d5774a5cf88b3638743b236b231b50e42
SHA512

9dbc8b879c5a603fc24a64e4965161531add49c27e3e3a4b6ef8960fb4f35aaba68e2e7c23ada85fe798794096a4a8347a299ef3456409a6dbae5586a4b65e15
SSDEEP

3072:+pQLSck5dKaRGath0b25EXd6qxqXeXNf5B/:VLYvMath0a5EXdvqXeXNn

Score

N/A

Malware Config

Signatures

Files

fb3fd97bd2e95562718ba8a850751c1d5774a5cf88b3638743b236b231b50e42
.exe windows x86

74eb21e4405e60c1df0a15ed3930c83a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
GetFileAttributesW
GetStringTypeA
FileTimeToLocalFileTime
GetSystemDirectoryA
GetNumberFormatA
SetFileTime
CreateProcessW
GetModuleHandleW
GlobalHandle
InterlockedDecrement
ExitProcess
GetStringTypeW
CompareStringA
RtlUnwind
GetFileType
SetFilePointer
InterlockedExchange
GetCurrentThreadId
OutputDebugStringA
QueryPerformanceCounter
GetStartupInfoW

msvcrt

__getmainargs
_exit
getenv
sprintf
strncpy
abort
__set_app_type
_controlfp
_onexit
fopen
strstr
free
__p__fmode
_initterm
_adjust_fdiv
calloc
atoi
_except_handler3
realloc
_write
__p__commode
__p___initenv
__setusermatherr
_XcptFilter
sinh

comdlg32

GetOpenFileNameA

user32

IsChild
SetDlgItemTextA
SendMessageA
IsRectEmpty
DeleteMenu
SystemParametersInfoA
PostMessageA
FindWindowA
IsZoomed
IsWindowVisible
MessageBoxA
GetWindowTextA
CreateWindowExA

advapi32

RegCreateKeyA
RegEnumKeyA
RegCreateKeyExA
CryptDestroyHash
SetSecurityDescriptorGroup
RegOpenKeyA
CryptAcquireContextA
RegQueryValueExW
IsValidSid
RegDeleteKeyA
RegDeleteValueW

gdi32

GetTextColor
SetDIBColorTable
AbortDoc
SelectClipPath
GetObjectW
CopyMetaFileA
CreateHatchBrush
GetNearestColor
GetWindowExtEx
GetDIBColorTable
CreateCompatibleDC
SetViewportOrgEx

ole32

OleInitialize
CoGetClassObject
OleSetClipboard
GetRunningObjectTable
OleRun
CoUninitialize
CoTaskMemFree
CoRevokeClassObject

comctl32

ImageList_DragLeave
ImageList_LoadImageA
CreatePropertySheetPageW
InitCommonControlsEx
DestroyPropertySheetPage
ImageList_DrawEx
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_SetIconSize
InitializeFlatSB
ImageList_Create
ImageList_GetIcon

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74eb21e4405e60c1df0a15ed3930c83a

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

advapi32

gdi32

ole32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 31KB - Virtual size: 31KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 31KB - Virtual size: 31KB