81dd0465324743dddf706fa0d646f508997f4a8b93037d49375671fed7103a56

Sharing

Copy URL

Twitter E-mail

General

Target

81dd0465324743dddf706fa0d646f508997f4a8b93037d49375671fed7103a56
Size

94KB
MD5

0de2868b33cba974e186f500ca3ce893
SHA1

52418a209d66a2d408c22fc0d9dcaf79f611f9c6
SHA256

81dd0465324743dddf706fa0d646f508997f4a8b93037d49375671fed7103a56
SHA512

90b652baa43e3463fffc459953e83b4a0cbfc0aea5e3f06e4fd3263125c72170ca966871df37a26fc1e6b2c7fdfb306a1550aa95b1569f38976863a1c840518c
SSDEEP

1536:nIA9hToHfO9eNIorjr9bmz0qaXAxzDMMxi4L9MfEHolasiEW/G+teN4nAJ+B2Ao:nIA9hToHm9e/lTwEi9MfEUq/GjN4Tfo

Score

N/A

Malware Config

Signatures

Files

81dd0465324743dddf706fa0d646f508997f4a8b93037d49375671fed7103a56
.exe windows x86

7a2b49d8c4985aa9c6046529c1187a10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcslen
_exit
__setusermatherr
_initterm
fputs
__set_app_type
sqrt
free
_except_handler3
memmove
_write
__getmainargs
__p__fmode
__p__commode
_acmdln
calloc
_adjust_fdiv

comdlg32

GetOpenFileNameA

kernel32

GetStartupInfoA
DeleteFileA
GetSystemTimeAsFileTime
lstrcmpiW
SetStdHandle
GetVersion
GetUserDefaultLangID
DeviceIoControl
SetErrorMode
GetTempPathA
WaitForSingleObject
GetNumberFormatA
GetCPInfo
GetLocalTime
LCMapStringA
Sleep
GetStringTypeA
LCMapStringW

user32

SetWindowLongA
SetClipboardData
SetMenu
WinHelpA
GetKeyState
RegisterWindowMessageA
SendDlgItemMessageA
SetWindowsHookExA
GetMenuItemCount
EndDialog
SetDlgItemTextA
DialogBoxParamA
GetSysColor

gdi32

GetObjectType
GetWindowExtEx
EndPath
CreateHatchBrush
DeleteDC
SetGraphicsMode
BeginPath
CreateCompatibleBitmap
GetCharWidthW
GetTextMetricsA
StrokeAndFillPath
EnumFontFamiliesExA
GetPixel
GetTextExtentPoint32A

comctl32

ImageList_DragLeave
CreatePropertySheetPageA
ImageList_AddMasked
ImageList_Create
ImageList_SetImageCount
ImageList_DragShowNolock
InitCommonControlsEx
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_Draw

ole32

CreateBindCtx
CoInitializeEx
CreateItemMoniker
StgOpenStorage
CoReleaseMarshalData
ReleaseStgMedium
IIDFromString
CoFreeUnusedLibraries
CoTaskMemFree
CoSetProxyBlanket

advapi32

OpenServiceW
AdjustTokenPrivileges
RegSetValueExW
RegCreateKeyA
FreeSid
RegDeleteValueW
AddAccessAllowedAce
QueryServiceStatus
SetSecurityDescriptorDacl
CryptHashData
DeregisterEventSource
GetSecurityDescriptorDacl
RegQueryInfoKeyW
RegCreateKeyExA

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7a2b49d8c4985aa9c6046529c1187a10

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

comctl32

ole32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 48KB

.rsrc Size: 17KB - Virtual size: 164KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 48KB

.rsrc
Size: 17KB - Virtual size: 164KB