ebce3ea15dced72f0e79b0c8f2ca282f0e6f345e018cf1b5e038ae0460298958

Sharing

Copy URL Twitter E-mail

General

Target

ebce3ea15dced72f0e79b0c8f2ca282f0e6f345e018cf1b5e038ae0460298958
Size

86KB
MD5

39e036034350414fde2c81c6699314ac
SHA1

e9a9ba4ebd46c5c6b19017c4ef2213624fca870e
SHA256

ebce3ea15dced72f0e79b0c8f2ca282f0e6f345e018cf1b5e038ae0460298958
SHA512

c490ce58a26849a794bd87efe10044af20196efbc0118a6ad9f5f7509982b4e5743ae2cdc528430fdb5702df8d56113f6cfa4ed8137b5262ec3a819e40299f2b
SSDEEP

1536:ZtjnSsWE+neXQyaMqwNis4lgfEwzvvQgzLDfFNmz+RxtcToUrAGgobu5j:LWE+nGHNidlgMwz3QwL7/v0oA

Score

N/A

Malware Config

Signatures

Files

ebce3ea15dced72f0e79b0c8f2ca282f0e6f345e018cf1b5e038ae0460298958
.exe windows x86

7c3c561cbc24c8799a689e0c20081afd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnableMenuItem
GetMessageA
EqualRect
UnhookWindowsHookEx
SetWindowPos
FrameRect
SetWindowTextA
GetSysColor
EnumWindows
GetSysColorBrush
PostQuitMessage
GetSubMenu
GetScrollPos

kernel32

GetSystemTime
FileTimeToSystemTime
GetThreadLocale
GetStartupInfoA
GetOEMCP
SetUnhandledExceptionFilter
ExitProcess
GetACP
GetTempPathA
GetFileAttributesA
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
VirtualAllocEx
GetTimeZoneInformation
InterlockedExchange

gdi32

CopyEnhMetaFileA
SetViewportExtEx
CreateICW
DPtoLP
FillRgn
GetMapMode
ExcludeClipRect
CreateCompatibleBitmap
SelectClipPath

ole32

CoInitializeSecurity
DoDragDrop
CoRevokeClassObject
CoTaskMemRealloc
StgOpenStorage
CoCreateInstance
OleRun
StringFromGUID2
CoInitialize

advapi32

FreeSid
GetSecurityDescriptorDacl
AdjustTokenPrivileges
CryptHashData
RegCreateKeyExW
QueryServiceStatus
CheckTokenMembership
RegQueryValueExW
RegCreateKeyA
GetUserNameA

msvcrt

_flsbuf
_fdopen
__initenv
fflush
signal
_lock
_mbscmp
strcspn
strlen
__getmainargs
raise
puts
iswspace
_CIpow
_strdup
fprintf
__setusermatherr
strncpy

comctl32

InitCommonControls
ImageList_ReplaceIcon
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Write
ImageList_DrawEx
CreatePropertySheetPageA
ImageList_Destroy
ImageList_GetBkColor
ImageList_LoadImageW
ImageList_DragEnter

shell32

DoEnvironmentSubstW
DragQueryFileW
ExtractIconExW
ShellExecuteEx
DragQueryFileA
DragAcceptFiles
ShellExecuteW
SHBrowseForFolderA
ExtractIconW
CommandLineToArgvW
SHGetPathFromIDList

oleaut32

SafeArrayRedim
SafeArrayUnaccessData
VariantCopy
SysReAllocStringLen
SafeArrayCreate
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

juerolq
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c3c561cbc24c8799a689e0c20081afd

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 36KB - Virtual size: 36KB

.data Size: 43KB - Virtual size: 42KB

.rsrc Size: 6KB - Virtual size: 34KB

juerolq Size: - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 36KB

.data
Size: 43KB - Virtual size: 42KB

.rsrc
Size: 6KB - Virtual size: 34KB

juerolq
Size: - Virtual size: 4KB