9eb8c89c87db701390f5cbea67a6d288702a6248c477f23f54b7c524c372af86

Sharing

Copy URL Twitter E-mail

General

Target

9eb8c89c87db701390f5cbea67a6d288702a6248c477f23f54b7c524c372af86
Size

84KB
MD5

8365d4dd2233c85beb4e61ebe34e3c3d
SHA1

63da09c41a712aa67e366e1211c3dc83bc756a48
SHA256

9eb8c89c87db701390f5cbea67a6d288702a6248c477f23f54b7c524c372af86
SHA512

2de97fe40eaab62ee666de908ae0819b755b67ab957179766f9d75fe21d71d84ad31e003e6dd24e93429e04efede43df195289f010ec4e235fc0af3ca7affe63
SSDEEP

1536:GU9E7CU5MWe3EZq+GHzBwiwLA+Z9ToL3Nm:GN7zNe3EZq+EwLA+ZVoL9m

Score

N/A

Malware Config

Signatures

Files

9eb8c89c87db701390f5cbea67a6d288702a6248c477f23f54b7c524c372af86
.exe windows x86

c0685a7cde37d01033929f85d2a78660

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
MultiByteToWideChar
lstrlenA
GetShortPathNameA
GetModuleHandleA
GetModuleFileNameA
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
SetEvent
WideCharToMultiByte
lstrlenW
WaitForSingleObject
CreateThread
CreateEventA
Sleep
GetCommandLineA
HeapDestroy
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
InterlockedIncrement
FlushInstructionCache
GetCurrentProcess
CreateProcessA
FormatMessageA
LocalFree
InitializeCriticalSection
GetLocalTime
GetCurrentThreadId
EnterCriticalSection
CloseHandle
InterlockedDecrement
DeleteCriticalSection
UnhandledExceptionFilter
RaiseException
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetStdHandle
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
RtlUnwind
HeapSize
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetVersionExA
GetEnvironmentVariableA
GetFileType
LeaveCriticalSection
GetStdHandle
SetHandleCount
SetFilePointer
TerminateProcess
WriteFile
FlushFileBuffers
ExitProcess
GetVersion
GetStartupInfoA
HeapReAlloc
HeapAlloc
HeapFree

user32

wsprintfA
EnableMenuItem
GetMenuItemID
CheckMenuRadioItem
GetClassInfoExA
SetWindowLongA
PostMessageA
FindWindowA
CharNextA
PostThreadMessageA
DispatchMessageA
GetMessageA
UpdateWindow
ShowWindow
MessageBoxA
RegisterClassExA
DestroyIcon
IsIconic
IsWindowVisible
CallWindowProcA
GetWindowLongA
GetMenuItemCount
CreateWindowExA
TrackPopupMenu
CreatePopupMenu
RemoveMenu
LoadCursorA
InsertMenuA
LoadMenuA
SetMenuDefaultItem
GetCursorPos
SetForegroundWindow
LoadIconA
PostQuitMessage
GetSubMenu
DestroyWindow
LoadStringA
DestroyMenu
DefWindowProcA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA

shell32

Shell_NotifyIconA

ole32

CLSIDFromString
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoInitialize
CoUninitialize
CoTaskMemRealloc

oleaut32

SysAllocStringLen
VariantClear
SysFreeString
SysStringLen
SysStringByteLen
RegisterTypeLi
LoadRegTypeLi
VarUI4FromStr
SysAllocString
LoadTypeLi

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0685a7cde37d01033929f85d2a78660

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 20KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 20KB

.rsrc
Size: 4KB - Virtual size: 1KB