0f31feed6f2179544e87bd5145ee953c564b7e792b561593f747716ebf5e6ed9

Sharing

Copy URL Twitter E-mail

General

Target

0f31feed6f2179544e87bd5145ee953c564b7e792b561593f747716ebf5e6ed9
Size

97KB
MD5

2288c3d3793a997e164d9fbd71a78cbc
SHA1

381cca811efb351b08f5271bfac80ebe8c9431f7
SHA256

0f31feed6f2179544e87bd5145ee953c564b7e792b561593f747716ebf5e6ed9
SHA512

77f124433398636c86400c43bc5236b224f1eb786786a4c4c08555671c3c3bbd86cdbd9615059f2c8ec5427ecf8b2d066eea16b2da1647b5992e1a54e6a29128
SSDEEP

3072:I2E1l61EdBbfNwjWQEPucsMogtBBBEBBBzBBBVtTBNYW:OX61EdB+jWdps0tBBBEBBBzBBBVx8

Score

N/A

Malware Config

Signatures

Files

0f31feed6f2179544e87bd5145ee953c564b7e792b561593f747716ebf5e6ed9
.exe windows x86

83faff1190b5d4f28c555bf7df6232f5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_adjust_fdiv
__p__fmode
_strnicmp
_except_handler3
_acmdln
strlen
__dllonexit
calloc
__setusermatherr
__p__commode
memset
malloc
__getmainargs
atoi
__set_app_type
memcpy
getenv
fputc
_exit
_initterm
strchr

kernel32

FreeLibrary
GlobalHandle
GetDriveTypeA
VirtualProtect
GetLocaleInfoW
FlushFileBuffers
FileTimeToDosDateTime
GetProcAddress
RtlUnwind
LoadLibraryExW
SetEnvironmentVariableA
GetStartupInfoW
GetStartupInfoA
GetCommandLineA
WriteFile
GetModuleFileNameA
ReadFile
lstrcmpiW
FileTimeToSystemTime
CopyFileA
GetUserDefaultLangID

comctl32

CreatePropertySheetPageW
ImageList_SetDragCursorImage
PropertySheetA
ImageList_GetBkColor
PropertySheetW
ImageList_Create
ImageList_DragLeave
ImageList_BeginDrag
ImageList_Replace
ImageList_Read
ImageList_Draw
ImageList_Destroy
ImageList_LoadImageW

user32

RegisterClassA
GetSysColorBrush
GetCapture
DrawEdge
GetClassNameA
GetClassInfoA
CallNextHookEx
GetActiveWindow
WaitMessage
CreatePopupMenu
MessageBoxA

gdi32

SetDIBColorTable
StrokeAndFillPath
CreateDCW
GetPaletteEntries
SetStretchBltMode
OffsetRgn
FillPath
CreatePalette
SetArcDirection
GdiFlush
LineDDA
ScaleViewportExtEx

ole32

OleFlushClipboard
CoDisconnectObject
OleDraw
ProgIDFromCLSID
IIDFromString
StgCreateDocfileOnILockBytes
CoTaskMemRealloc
StringFromIID

oleaut32

VariantCopyInd
SafeArrayUnaccessData
GetActiveObject
VariantInit
GetErrorInfo
LoadTypeLib

advapi32

RegQueryValueExW
RegQueryInfoKeyW
RegSetValueExW
RegEnumValueW
DeregisterEventSource
OpenProcessToken
ControlService
RegEnumKeyExW
RegEnumKeyA
RegOpenKeyA
GetSecurityDescriptorDacl

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83faff1190b5d4f28c555bf7df6232f5

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

user32

gdi32

ole32

oleaut32

advapi32

Sections

.text Size: 55KB - Virtual size: 55KB

.data Size: 25KB - Virtual size: 24KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 55KB - Virtual size: 55KB

.data
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 16KB - Virtual size: 15KB