d77a91befad759961a75a00da7eb680c026d923764acddca7dbd1366bb633c31

Sharing

Copy URL Twitter E-mail

General

Target

d77a91befad759961a75a00da7eb680c026d923764acddca7dbd1366bb633c31
Size

99KB
MD5

0a89eed3f7e4b0013c7f0b008f5f3d65
SHA1

4efa349c24dca475f28c831815ed88d258521637
SHA256

d77a91befad759961a75a00da7eb680c026d923764acddca7dbd1366bb633c31
SHA512

3fda55f9b18e9cc9a0ad434f544ac40e72cc706c8092dcc734c3768cd1caa115b1c95f72809524da20e0a06af5a004b46eb019163391f11589ecf20048a5bc72
SSDEEP

1536:+V435PRFMbAMFFfShapHxrw9GzE9bDkaqBL28tSUGPO323oQK:t3ZMbd+haIYA9/D0TGP9oX

Score

N/A

Malware Config

Signatures

Files

d77a91befad759961a75a00da7eb680c026d923764acddca7dbd1366bb633c31
.exe windows x86

907bbc7352a610aa8a1a9fc4d82dc188

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadWritePtr
QueryPerformanceCounter
TerminateProcess
CompareStringA
GetCurrentDirectoryA
GetEnvironmentVariableA
SetErrorMode
GetStdHandle
GlobalHandle
CreateDirectoryA
GetNumberFormatA
GetExitCodeProcess
InterlockedIncrement
FormatMessageA
GetCurrentThreadId

msvcrt

_controlfp
__p__fmode
_exit
_iob
__setusermatherr
strrchr
__p__commode
__getmainargs
realloc
calloc
free
strncmp
sinh
_XcptFilter
__p___initenv
exit
_except_handler3
_initterm
malloc
_adjust_fdiv
__set_app_type

comdlg32

GetOpenFileNameA

user32

ScrollWindow
DefWindowProcA
InsertMenuA
CharLowerA
DestroyCursor
CharNextA
SetWindowPos
DispatchMessageA
GetDlgItem
SetDlgItemTextA

advapi32

QueryServiceStatus
RegQueryValueExW
IsValidSid
RegEnumKeyExA
RegQueryValueA
OpenProcessToken
RegQueryInfoKeyW
CryptDestroyHash
RegDeleteValueW
RegCreateKeyA
RegDeleteValueA
OpenServiceA
OpenServiceW
CryptCreateHash

comctl32

ImageList_Write
CreateToolbarEx
ImageList_DragLeave
ImageList_Replace
ImageList_Add
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_Remove
ImageList_Read
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_EndDrag
ImageList_SetImageCount
CreatePropertySheetPageA
InitializeFlatSB

gdi32

CreateFontA
Ellipse
CloseMetaFile
FillPath
Arc
GetTextExtentExPointW
EndDoc
GetBkMode
GetBrushOrgEx
GdiFlush
GetCharWidthA
SelectClipPath
SelectPalette
EnumEnhMetaFile
SetViewportOrgEx
SetTextColor
PtVisible
Escape
TranslateCharsetInfo

ole32

CoInitializeEx
DoDragDrop
IIDFromString
CoRegisterClassObject
StgOpenStorage
CoDisconnectObject
OleInitialize
CoCreateInstance
CreateItemMoniker
CoUninitialize

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

907bbc7352a610aa8a1a9fc4d82dc188

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

advapi32

comctl32

gdi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 30KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 30KB - Virtual size: 30KB