5c71545c59e9bfb2e2869a6d091fbc98ce1ff3368eb3570a450440b5896b74e6

Sharing

Copy URL Twitter E-mail

General

Target

5c71545c59e9bfb2e2869a6d091fbc98ce1ff3368eb3570a450440b5896b74e6
Size

240KB
MD5

52717f4ec4620345cf636dc4c59d9173
SHA1

5c832e359ed6c04bdbb52daeac86fe8ea9d124d4
SHA256

5c71545c59e9bfb2e2869a6d091fbc98ce1ff3368eb3570a450440b5896b74e6
SHA512

abf6e5ad8dfb7835b6f74be9e1be50f1e326cbbbbc3d8b76fa1ff42d9313d7596c34c366bef019c4a6675331ab3ffef966c356c93a23d9370516e872426010e7
SSDEEP

6144:sBJZqBAtMWk/nZ3zquHgsOz86ca+Gsd4xzQf5:4JQmAPBdgsO3ca+G20zs

Score

N/A

Malware Config

Signatures

Files

5c71545c59e9bfb2e2869a6d091fbc98ce1ff3368eb3570a450440b5896b74e6
.exe windows x86

81c1b2f8217ac9648317a5010455dd3e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathRemoveFileSpecA

kernel32

lstrlenA
SetFilePointer
SetFileAttributesA
GetModuleFileNameA
CreateEventA
WideCharToMultiByte
GetCurrentProcessId
ExitThread
GlobalFree
CreateThread
GetLastError
DeleteFileA
FreeLibrary
GetProcAddress
LoadLibraryA
LoadLibraryExA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenEventA
OpenFileMappingA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleA
MultiByteToWideChar
GetACP
GetCurrentThreadId
WaitForSingleObject
FlushFileBuffers
SetStdHandle
LCMapStringW
LCMapStringA
GetOEMCP
GetCPInfo
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
VirtualAlloc
InterlockedIncrement
InterlockedDecrement
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
Sleep
lstrcpyA
GetTickCount
PulseEvent
CreateFileA
WriteFile
CloseHandle
GlobalAlloc
HeapAlloc
TlsGetValue
SetLastError
TlsAlloc
TlsSetValue
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind

user32

ReleaseDC
FillRect
SetRect
GetClientRect
BeginPaint
GetDC
InvalidateRect
EndPaint
SetWindowTextA
wvsprintfA
wsprintfA
FindWindowA
LoadCursorA
LoadIconA
RegisterClassA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
ShowWindow
PostQuitMessage
IsIconic
SetForegroundWindow
LoadMenuA
GetSubMenu
EnableMenuItem
GetCursorPos
TrackPopupMenuEx
DestroyMenu
DefWindowProcA
SendMessageA
MessageBoxA
PostMessageA

gdi32

GetStockObject
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice

advapi32

RegQueryValueExA
RegCreateKeyExA
RegCloseKey
RegSetValueExA
RegFlushKey

shell32

Shell_NotifyIconA

ole32

GetRunningObjectTable
CoCreateInstance
CoInitialize
CoTaskMemFree
CoUninitialize
CreateItemMoniker

oleaut32

SysFreeString
OleCreatePropertyFrame

tg_image

MemBitBltSrcKeyColor
LoadTGIResource
Stretch_Bitmap
TGI_Decompress

tg_color

MemBitBltAlphaRender

tg_audio

WaveRecOpen
WaveRecClose
WaveRecBuffer
SetPCMFormat

Sections

.text
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

81c1b2f8217ac9648317a5010455dd3e

Headers

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

tg_image

tg_color

tg_audio

Sections

.text Size: 48KB - Virtual size: 46KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 13KB

.rsrc Size: 4KB - Virtual size: 2KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 48KB - Virtual size: 46KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 13KB

.rsrc
Size: 4KB - Virtual size: 2KB

.text
Size: 168KB - Virtual size: 168KB