02559c440f14e5f03b0e8732c1c81eb7bd38162830242ecbd9eaf0dc4abc630a

Sharing

Copy URL Twitter E-mail

General

Target

02559c440f14e5f03b0e8732c1c81eb7bd38162830242ecbd9eaf0dc4abc630a
Size

105KB
MD5

20d8a590bd021c6025a8ec935c7a9cb0
SHA1

884f2b4bc060f66b77675275d786a017500ac830
SHA256

02559c440f14e5f03b0e8732c1c81eb7bd38162830242ecbd9eaf0dc4abc630a
SHA512

13f478cfae4468eb5453f290665ff5c1a0570cdf63a476a157d6a837612c9962352da1b52f88c9b914e99df737a104ef69cf16f6cb9ae177513bc935161546fa
SSDEEP

1536:XznWPBonVQxKsfKnMMD05QJqZiRQbxGvy24EWz3/GUcy4rDvjMq40kslrJ:X6XxKs575XZiRixGK24Ek7x2MeJ

Score

N/A

Malware Config

Signatures

Files

02559c440f14e5f03b0e8732c1c81eb7bd38162830242ecbd9eaf0dc4abc630a
.exe windows x86

47682f9783d1d2a2d6cebc7dd49dc8a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

_XcptFilter
__set_app_type
printf
_except_handler3
_exit
memmove
atan
__p__fmode
exit
_initterm
_adjust_fdiv
realloc
__setusermatherr
fread
free
calloc
_acmdln
_write
__p__commode
__getmainargs
strcmp

kernel32

GetStartupInfoW
GetConsoleOutputCP
SetFileAttributesA
WaitForSingleObject
FileTimeToDosDateTime
LCMapStringA
GetExitCodeProcess
GetStartupInfoA

comctl32

ImageList_Add
ImageList_Read
ImageList_SetIconSize
InitializeFlatSB
ImageList_EndDrag
ImageList_SetOverlayImage
InitCommonControlsEx
ImageList_SetDragCursorImage

oleaut32

SafeArrayUnaccessData
SafeArrayPtrOfIndex
SafeArrayGetUBound
GetActiveObject
SafeArrayCreate
VariantClear
SysReAllocStringLen

gdi32

GetTextExtentExPointW
GetObjectA
ArcTo
SetMapperFlags

advapi32

RegQueryValueExW
CopySid
CheckTokenMembership
RegEnumKeyExW
CryptCreateHash

shell32

SHFileOperationW
ShellExecuteEx
Shell_NotifyIconA
SHBrowseForFolderW
ShellExecuteExA

user32

MapWindowPoints
GetClassNameA
ScreenToClient
GetTopWindow
InsertMenuA
MessageBeep
DestroyWindow

ole32

ProgIDFromCLSID
StgCreateDocfileOnILockBytes
OleDraw
CoInitializeEx
CoTaskMemAlloc
CoRevokeClassObject

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47682f9783d1d2a2d6cebc7dd49dc8a3

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

comctl32

oleaut32

gdi32

advapi32

shell32

user32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 61KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 61KB

.rsrc
Size: 29KB - Virtual size: 29KB