02e31c5ddbcce7bc4374cc10a3822ec5e37462a468fc78ef7690979fa5236c62

Sharing

Copy URL Twitter E-mail

General

Target

02e31c5ddbcce7bc4374cc10a3822ec5e37462a468fc78ef7690979fa5236c62
Size

95KB
MD5

0922a670324ecac959529a8981c74d48
SHA1

d7d7d76146606f96012000f0df10c4ba33478ac6
SHA256

02e31c5ddbcce7bc4374cc10a3822ec5e37462a468fc78ef7690979fa5236c62
SHA512

feed9db3d1097f68a6a376f6ee9492aae892fadf7175255823f69a7f0a83b09fde18a468c02231ec7a1824a34e3bd67eb1decc258473efbf196392b542d7595c
SSDEEP

1536:AkhZ5Iqz+HZ1+uW8y/Wg65oDDOYBKNSYEpxxu/UlGZNmUR0hvcNWW74d:HtIAFrd6yDKYBiSYh1RnWW74d

Score

N/A

Malware Config

Signatures

Files

02e31c5ddbcce7bc4374cc10a3822ec5e37462a468fc78ef7690979fa5236c62
.exe windows x86

ad296ec84ac7448460d03fbdec7ec567

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
_adjust_fdiv
strchr
__p__commode
__set_app_type
fopen
_cexit
__setusermatherr
free
fwrite
_except_handler3
__getmainargs
signal
calloc
strncpy
sqrt
fputc
malloc
__p__fmode
_exit
_acmdln
fread

comdlg32

GetOpenFileNameA

kernel32

GetUserDefaultLCID
WritePrivateProfileStringA
OutputDebugStringA
CreateFileMappingA
RemoveDirectoryA
GetACP
GetModuleFileNameW
GetModuleHandleA
GetStartupInfoA
Sleep
FileTimeToSystemTime
IsBadCodePtr
GetNumberFormatA
GetPrivateProfileStringA

user32

EnableWindow
UnhookWindowsHookEx
GetDesktopWindow
SetWindowPlacement
SetDlgItemTextA
DrawFrameControl
CreateWindowExA
GetSysColor
SetCapture
EmptyClipboard

advapi32

SetSecurityDescriptorGroup
InitializeSecurityDescriptor
RegOpenKeyExW
ControlService
SetSecurityDescriptorDacl
RegDeleteValueA
OpenThreadToken
CryptGenRandom
RegFlushKey
RegEnumValueA
FreeSid
AdjustTokenPrivileges
RegEnumKeyW
DeleteService
RegCreateKeyA
OpenSCManagerW

gdi32

PlayMetaFileRecord
GetNearestPaletteIndex
LineDDA
GetEnhMetaFileHeader
TextOutA
OffsetRgn
GetObjectType
CreateFontIndirectW
GetMetaFileBitsEx
GetRegionData
RectVisible
MoveToEx
GetCharWidthA
SetTextAlign
GetTextMetricsA
GetObjectW
ExtCreatePen
SetPixel
StartPage
IntersectClipRect
GetMapMode
GetTextExtentPoint32W

ole32

DoDragDrop
StringFromGUID2
StgOpenStorageOnILockBytes
StringFromCLSID
CreateItemMoniker
OleDraw
OleInitialize
GetRunningObjectTable
CoDisconnectObject
ProgIDFromCLSID

comctl32

CreatePropertySheetPageW
ImageList_Replace
ImageList_GetIconSize
PropertySheetW
InitCommonControls
ImageList_Write
ImageList_DrawEx
ImageList_Create

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad296ec84ac7448460d03fbdec7ec567

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

advapi32

gdi32

ole32

comctl32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 18KB - Virtual size: 17KB