4f0ec8ca973579c49ec6e5fa14b3771bec4eed6393bf148a99affc2dc62a0f0c

Sharing

Copy URL Twitter E-mail

General

Target

4f0ec8ca973579c49ec6e5fa14b3771bec4eed6393bf148a99affc2dc62a0f0c
Size

170KB
MD5

2afd40b451c5d734dd79eae97d903250
SHA1

279f1ef5c46d92e87aaf140ee84674c35b879228
SHA256

4f0ec8ca973579c49ec6e5fa14b3771bec4eed6393bf148a99affc2dc62a0f0c
SHA512

651dca5574f5c0d6cf1f1300e84257d9c35b40d25b731c0d01b3a1db190c992bd0b76162a26e1ccbb5dddd8acdb9f78c0d758197ad2edc02636bb7ede658855d
SSDEEP

3072:/X+XPHrKjctKxZmOaxjV9o5V1eaLFq+gJ7XHLAF6Uj:f+XPLKjOr5xjV9o5FJFAHL+

Score

N/A

Malware Config

Signatures

Files

4f0ec8ca973579c49ec6e5fa14b3771bec4eed6393bf148a99affc2dc62a0f0c
.exe windows x86

aee238516b20cc35582a0d19917d3f5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerFindFileA
VerQueryValueA

shlwapi

SHGetValueA
SHSetValueA
PathGetCharTypeA
PathIsContentTypeA
SHDeleteValueA
SHDeleteKeyA
SHQueryInfoKeyA
PathIsDirectoryA
PathFileExistsA

advapi32

RegOpenKeyExA

oleaut32

SafeArrayUnaccessData
VariantChangeType
SafeArrayCreate
SafeArrayPtrOfIndex
SafeArrayGetUBound
GetErrorInfo
OleLoadPicture
RegisterTypeLib
VariantCopyInd
SysFreeString

comdlg32

GetSaveFileNameA

gdi32

CreateDIBSection
GetBitmapBits
GetClipBox
CreatePenIndirect
SelectObject
CreateBitmap
SaveDC
CreateDIBSection
SetPixel

shell32

DragQueryFileA
SHGetDesktopFolder
SHGetFolderPathA
Shell_NotifyIconA

msvcrt

strncmp
sqrt
memmove
cos

kernel32

Sleep
VirtualAlloc
GetCommandLineA
GetModuleHandleA
LoadLibraryExA
LoadLibraryA
GetCurrentThreadId

comctl32

ImageList_Write

ole32

CLSIDFromProgID
CoCreateFreeThreadedMarshaler
StringFromIID
CoCreateGuid
CoFreeUnusedLibraries
CoRevokeClassObject

user32

GetCursorPos
TrackPopupMenu
IsChild
CreatePopupMenu
GetParent
ShowWindow
CreateIcon
GetDCEx
GetSysColor
GetScrollRange
EnumThreadWindows
MessageBoxA
DispatchMessageW
DrawEdge
GetMenu
DrawIconEx
GetScrollPos
GetClipboardData
CallNextHookEx
GetWindow
GetClassLongA
GetClassInfoA
GetMenuItemInfoA
EndPaint
DrawIcon
IsMenu
SetWindowTextA
DefWindowProcA
GetForegroundWindow
HideCaret
GetLastActivePopup
EqualRect
GetPropA
SetWindowPos
GetIconInfo
EnumChildWindows
EnableWindow
CharToOemA
EnableMenuItem
GetMenuItemID
SystemParametersInfoA
GetMessagePos
GetWindowTextA
GetCapture
GetSysColorBrush
BeginPaint
GetKeyState
GetDC
GetDlgItem
SetWindowLongA
CharLowerA
FillRect
SetCursor
GetActiveWindow
CheckMenuItem
DefFrameProcA
CharNextA
FrameRect
IsWindowEnabled

Sections

CODE
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 1024B - Virtual size: 721B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

aee238516b20cc35582a0d19917d3f5b

Headers

File Characteristics

Imports

version

shlwapi

advapi32

oleaut32

comdlg32

gdi32

shell32

msvcrt

kernel32

comctl32

ole32

user32

Sections

CODE Size: 45KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 75KB

.data Size: 119KB - Virtual size: 119KB

.init Size: 1024B - Virtual size: 721B

CODE
Size: 45KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 75KB

.data
Size: 119KB - Virtual size: 119KB

.init
Size: 1024B - Virtual size: 721B