12c681137b58fbd4bfca48e423ae787536e03924f95f5c4731f8b13481b34e57

Sharing

Copy URL Twitter E-mail

General

Target

12c681137b58fbd4bfca48e423ae787536e03924f95f5c4731f8b13481b34e57
Size

87KB
MD5

096572349613d0dd811cbb2cfb8d1cb8
SHA1

30b70176f82706b1428bb3c3cdc423a40b9824cc
SHA256

12c681137b58fbd4bfca48e423ae787536e03924f95f5c4731f8b13481b34e57
SHA512

76bb845cd84acf7bf460c05456205de80208b7935202fcaada6956d4e8a30c66cb9f2c1994dabeec576c0cb671f63a1f4ed05cf58f8bc89924959c56a1d946a4
SSDEEP

1536:ELpZZaCzhdrCgjmsXhobrL4JE05zqKLRcUHBirhyQzNNlW8UX3dDCdnOz1DnXf:4pZTrr1obYV/6vdyUIKOz9nXf

Score

N/A

Malware Config

Signatures

Files

12c681137b58fbd4bfca48e423ae787536e03924f95f5c4731f8b13481b34e57
.exe windows x86

a1b49e0e0384a173acbd59b0546a8864

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
GetIconInfo
GetCursorPos
GetMenuItemID
GetWindowThreadProcessId
LoadStringA
FrameRect
IsIconic
RegisterClassA
SetDlgItemTextA
FindWindowA
GetMenuItemCount
IsRectEmpty
SetScrollInfo

msvcrt

fread
calloc
_exit
fclose
__p__fmode
fwrite
_except_handler3
__p__commode
_snprintf
free
sqrt
realloc
_acmdln
strrchr
__setusermatherr
strchr
strlen
__set_app_type
_initterm
_adjust_fdiv
__getmainargs
_write

comdlg32

GetOpenFileNameA

kernel32

FormatMessageA
GetModuleHandleA
GetStartupInfoA
EnumCalendarInfoA
GetStdHandle
lstrcmpA
CopyFileA
CompareStringA
GetNumberFormatA
GlobalUnlock
SetUnhandledExceptionFilter

ole32

CLSIDFromProgID
CoGetInterfaceAndReleaseStream
CLSIDFromString
StringFromIID
ReleaseStgMedium
PropVariantClear
ProgIDFromCLSID
StringFromGUID2
CoUninitialize
CoTaskMemFree
CoRevokeClassObject
IIDFromString

comctl32

InitCommonControlsEx
ImageList_SetDragCursorImage
ImageList_Draw
ImageList_Replace
ImageList_SetIconSize
DestroyPropertySheetPage
ImageList_DragLeave
ImageList_DragEnter
ImageList_Destroy
ImageList_Add
ImageList_Write
ImageList_Create

advapi32

CryptHashData
DeleteService
InitializeSecurityDescriptor
RegEnumValueA
SetSecurityDescriptorGroup
GetUserNameA
RegQueryValueExA
RegCloseKey
GetSecurityDescriptorDacl
CryptAcquireContextA
OpenServiceW
RevertToSelf
AddAccessAllowedAce
RegQueryInfoKeyA
RegOpenKeyW

gdi32

DeleteMetaFile
PtVisible
IntersectClipRect
EndPath
CreateFontIndirectW
StretchBlt
BitBlt
CreateBrushIndirect
CreateFontA
LPtoDP
UnrealizeObject
GetPaletteEntries
SetTextCharacterExtra
GetMapMode
Rectangle

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a1b49e0e0384a173acbd59b0546a8864

Headers

File Characteristics

Imports

user32

msvcrt

comdlg32

kernel32

ole32

comctl32

advapi32

gdi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 18KB - Virtual size: 96KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 18KB - Virtual size: 96KB