64ab57dd3dd24944252b65b9c8302f209205dbac14bf1035b34b48a8d15fec63

Sharing

Copy URL

Twitter E-mail

General

Target

64ab57dd3dd24944252b65b9c8302f209205dbac14bf1035b34b48a8d15fec63
Size

265KB
MD5

eac7355f4d4edd1a32768ce8d91c21d8
SHA1

0b73089ed7371ee7880b8e4061bbcba50d85bbc0
SHA256

64ab57dd3dd24944252b65b9c8302f209205dbac14bf1035b34b48a8d15fec63
SHA512

39adde44cf8450f6be15e74cb1f402c90f9c2049386b7076f105a89370a66312521a8738d7b7c86a3cd18216cfcc141e301fe8ec7e268617c81166359be5dcf6
SSDEEP

6144:nC4NIoNmc77uYYJ4S6j4Hw+StbxfB1J4PRj4+w+Stgxfl:nC4NIoNmc78F6j4HnStbxfp4Rj4+nStm

Score

N/A

Malware Config

Signatures

Files

64ab57dd3dd24944252b65b9c8302f209205dbac14bf1035b34b48a8d15fec63
.exe windows x86

116cab4f6465a8086feb91421072ed4f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
FindClose
FindFirstFileA
GetVersionExA
GetLastError
FindNextFileA
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
DeleteFileA
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapFree
HeapAlloc
SetCurrentDirectoryA
RemoveDirectoryA
CreateFileA
lstrlenA
WriteFile
CloseHandle
LoadLibraryA
CreateProcessA
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
ResumeThread
Sleep
WinExec
MulDiv
GetVersion
GetModuleHandleA
GetProcAddress
GetUserDefaultLangID
GetModuleFileNameA
lstrcpyA
FreeEnvironmentStringsW
GetPrivateProfileStringA

user32

GetClientRect
wsprintfA
GetSystemMetrics
ScreenToClient
FillRect
LoadBitmapA
DrawTextA
SendMessageA
GetWindowRect
SystemParametersInfoA
SetWindowPos
GetSysColor
SetTimer
KillTimer
SetCursor
GetWindowTextA
SetWindowTextA
EnumChildWindows
SendDlgItemMessageA
GetDlgItem
EndDialog
PostQuitMessage
MoveWindow
PostMessageA
DefWindowProcA
BeginPaint
EndPaint
DialogBoxParamA
DestroyWindow
CreateWindowExA
ShowWindow
UpdateWindow
LoadCursorA
LoadIconA
RegisterClassA
GetDesktopWindow
GetDC
ReleaseDC
GetMessageA
TranslateMessage
DispatchMessageA
LoadStringA
MessageBoxA
OffsetRect

gdi32

BitBlt
GetDeviceCaps
CreateFontA
DeleteObject
GetStockObject
SetBkMode
SetTextColor
SelectObject
CreateSolidBrush
CreateCompatibleDC
DeleteDC
GetObjectA

comdlg32

GetOpenFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey

shell32

SHChangeNotify

comctl32

ord17

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gda
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

116cab4f6465a8086feb91421072ed4f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

Sections

.text Size: 144KB - Virtual size: 144KB

.rsrc0 Size: 32KB - Virtual size: 32KB

.rsrc Size: 84KB - Virtual size: 84KB

.gda Size: 1KB - Virtual size: 4KB

.text
Size: 144KB - Virtual size: 144KB

.rsrc0
Size: 32KB - Virtual size: 32KB

.rsrc
Size: 84KB - Virtual size: 84KB

.gda
Size: 1KB - Virtual size: 4KB