c9a51ef179f3d28ead5a0494d3ff434163211c623fe72e39aa88afbd770e86c4

Sharing

Copy URL Twitter E-mail

General

Target

c9a51ef179f3d28ead5a0494d3ff434163211c623fe72e39aa88afbd770e86c4
Size

225KB
MD5

112d5885f3d699c00559b13e4b5a1a4a
SHA1

aafc6187aaa86f818410500dd6a679cef7e3befc
SHA256

c9a51ef179f3d28ead5a0494d3ff434163211c623fe72e39aa88afbd770e86c4
SHA512

11a47ef0623fbee828f550ac9cbca4b4269c9ab856b73c8c539783137a1143e3bd34d3a584db89e1104a380eff1d07edf44d1bbbe6b040d30e0988774d95232f
SSDEEP

3072:Mu3RArpu14WDDguEDFg87b4ddO1CPLtDhRzwdoWIEcEZSAuRTufC3vCtXQM7Puy:5aI1DDr2g87UdOCPV8do3EZ9u6Dt

Score

N/A

Malware Config

Signatures

Files

c9a51ef179f3d28ead5a0494d3ff434163211c623fe72e39aa88afbd770e86c4
.exe windows x86

3e092783e57015d4da865446fbab5105

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetThreadLocale
LocalAlloc
ExitThread
GetModuleHandleA
SetHandleCount
Sleep
LoadLibraryA
GetCommandLineW
GetProcAddress
lstrlenA
IsBadReadPtr
IsBadHugeReadPtr
GetDateFormatA
SetEvent
GlobalAddAtomA
VirtualAlloc
ExitProcess
CreateEventA
HeapDestroy
LoadLibraryExA
GetLastError
VirtualQuery

msvcrt

sqrt

user32

DrawFrameControl

comdlg32

GetOpenFileNameA
ChooseColorA

comctl32

ImageList_Write
ImageList_Create
ImageList_DragShowNolock
ImageList_Draw
ImageList_Remove
ImageList_Read
ImageList_GetBkColor

ole32

CoDisconnectObject
ReleaseStgMedium
OleRun
CoCreateFreeThreadedMarshaler
CoFreeUnusedLibraries
MkParseDisplayName
CreateOleAdviseHolder

advapi32

RegOpenKeyExA

gdi32

GetObjectA
GetDIBColorTable

Sections

CODE
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rsrc5
Size: 1024B - Virtual size: 734B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rsrc1
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Rsrc7
Size: 512B - Virtual size: 266B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rsrc4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rsrc0
Size: 512B - Virtual size: 473B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rsrc3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3e092783e57015d4da865446fbab5105

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

comdlg32

comctl32

ole32

advapi32

gdi32

Sections

CODE Size: 64KB - Virtual size: 63KB

DATA Size: 151KB - Virtual size: 151KB

.Rsrc5 Size: 1024B - Virtual size: 734B

.Rsrc1 Size: 2KB - Virtual size: 1KB

.Rsrc7 Size: 512B - Virtual size: 266B

.Rsrc4 Size: 2KB - Virtual size: 1KB

.Rsrc0 Size: 512B - Virtual size: 473B

.Rsrc3 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 920B

CODE
Size: 64KB - Virtual size: 63KB

DATA
Size: 151KB - Virtual size: 151KB

.Rsrc5
Size: 1024B - Virtual size: 734B

.Rsrc1
Size: 2KB - Virtual size: 1KB

.Rsrc7
Size: 512B - Virtual size: 266B

.Rsrc4
Size: 2KB - Virtual size: 1KB

.Rsrc0
Size: 512B - Virtual size: 473B

.Rsrc3
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 920B