d68548cb6259ae381614d3b3604d2befc6fff9303125e562ad5cf4948186ab72

Sharing

Copy URL Twitter E-mail

General

Target

d68548cb6259ae381614d3b3604d2befc6fff9303125e562ad5cf4948186ab72
Size

103KB
MD5

2881704b48d3fd3315afcd5dc11840bc
SHA1

7cce2664d8a743c528385a7d38c56f01cf7882e4
SHA256

d68548cb6259ae381614d3b3604d2befc6fff9303125e562ad5cf4948186ab72
SHA512

a6dd184ae91bfab3429ed93ab92da717060906c8a48469dbb108ae2f1eb3a987e56fd6179c206b00795efa0da64758fe6d3db427a682b4cb4ce9b435851250cc
SSDEEP

3072:PT736N7JRzwS4ryqK6gT7/Ubnct0zEVp1l:PT736NXwS42qKP/UbNYVp/

Score

N/A

Malware Config

Signatures

Files

d68548cb6259ae381614d3b3604d2befc6fff9303125e562ad5cf4948186ab72
.exe windows x86

a94c7629deb23a7d02ad7c69e50b0b42

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
__dllonexit
__getmainargs
_vsnprintf
sprintf
__set_app_type
__p__fmode
__setusermatherr
__p__commode
abort
strncpy
free
_initterm
_exit
calloc
_snprintf
__p___initenv
fprintf
_stricmp
strlen
memcpy
sinh
_adjust_fdiv
getenv
_except_handler3
wcslen
realloc
_XcptFilter

comdlg32

GetOpenFileNameA

kernel32

GetNumberFormatA
GetACP
CreateProcessW
lstrlenA
GetModuleHandleA
WideCharToMultiByte
lstrcpyA
GetCurrentThreadId
GlobalReAlloc
GetCommandLineW
RtlUnwind

user32

SetCapture
GetWindowThreadProcessId
IsRectEmpty
SetForegroundWindow
SetDlgItemTextA
SetWindowPlacement
ClientToScreen
SetWindowsHookExA

ole32

CoSetProxyBlanket
OleSetMenuDescriptor
CoGetMalloc
ReleaseStgMedium
CoTaskMemRealloc
CoGetInterfaceAndReleaseStream
CoCreateGuid
CoTaskMemAlloc
RevokeDragDrop
OleInitialize
StgOpenStorage
CLSIDFromString
CoUninitialize

gdi32

SelectPalette
GetEnhMetaFileDescriptionA
CreateDIBitmap
Polyline
SetDIBitsToDevice
StretchBlt
EndDoc
RoundRect
AbortDoc
GetTextExtentPoint32W
SetWorldTransform
GetTextColor
BeginPath
CreateRectRgnIndirect
SelectClipPath
GetMapMode
EndPage
GetEnhMetaFileBits
PolyDraw

comctl32

ImageList_SetBkColor
ImageList_GetIconSize
ImageList_GetBkColor
InitializeFlatSB
CreateToolbarEx
ImageList_Read
PropertySheetA
ImageList_GetImageInfo
CreateStatusWindowA
CreatePropertySheetPageW

advapi32

SetSecurityDescriptorOwner
OpenSCManagerW
RegDeleteValueA
RegOpenKeyExA
LookupPrivilegeValueW
InitializeSecurityDescriptor
OpenSCManagerA
RegOpenKeyW
RegSetValueExW
RevertToSelf
IsValidSid
LookupPrivilegeValueA
RegEnumKeyExW
GetLengthSid
RegQueryValueA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a94c7629deb23a7d02ad7c69e50b0b42

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

gdi32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 28KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 28KB - Virtual size: 100KB