ec8a55585b980b41363743dfd0f27be30b40982d6d2389a9825d90eaeee09cee

Sharing

Copy URL Twitter E-mail

General

Target

ec8a55585b980b41363743dfd0f27be30b40982d6d2389a9825d90eaeee09cee
Size

275KB
MD5

06ec9f83673312535523ffb55b14ea16
SHA1

970f782f83c0f095dc621f22f137484b7c1b3ea2
SHA256

ec8a55585b980b41363743dfd0f27be30b40982d6d2389a9825d90eaeee09cee
SHA512

39735e96d3ef6ba4259ad22169f80bab7d881ca07c4f093910e2a8170ab082d03e8ee5b7245d6225fc7ceff8114b7e64fc5461dfef921e1f5bab7b66ec8eb71d
SSDEEP

6144:AG+nyrRm06nM9N3QoLpKpTrf3xYYKrgu00jj/ZYMr:AG+yrRm5AQqKp/qYKrgu00XFr

Score

N/A

Malware Config

Signatures

Files

ec8a55585b980b41363743dfd0f27be30b40982d6d2389a9825d90eaeee09cee
.exe windows x86

1fd9f26a92ff1c917490e27487805455

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerFindFileA
GetFileVersionInfoSizeA
VerInstallFileA
GetFileVersionInfoA
VerFindFileA
VerQueryValueA
VerFindFileA
VerInstallFileA
VerFindFileA
GetFileVersionInfoSizeA

gdi32

LineTo
GetDCOrgEx
SetBkColor
CreateBitmap
SelectPalette
CreateFontIndirectA
SetPixel
GetBitmapBits
BitBlt
SetBkColor
GetPaletteEntries
CreatePenIndirect
SetTextColor
GetDIBColorTable
SelectPalette
CreateBrushIndirect
BitBlt
GetObjectA
CreateBitmap

msvcrt

sqrt
wcstol
fabs
wcsncmp
memmove
atan
srand
cos
tolower
log10

comdlg32

GetOpenFileNameA

shell32

SHGetFolderPathA
SHGetDiskFreeSpaceA
SHGetFileInfoA
SHFileOperationA
SHGetSpecialFolderLocation

comctl32

ImageList_Add
ImageList_GetBkColor
ImageList_Read
ImageList_Write
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetBkColor
ImageList_Remove
ImageList_Destroy
ImageList_DrawEx

kernel32

lstrcatA
lstrlenA
LoadLibraryA
ExitProcess
GetProcAddress
IsBadReadPtr
VirtualAlloc
GetModuleHandleA
ExitThread
GetACP
GetLastError
GetCommandLineW
LoadLibraryExA
GetVersionExA

advapi32

RegEnumKeyExA
RegQueryValueExA

oleaut32

SysAllocStringLen
SafeArrayPtrOfIndex
OleLoadPicture
VariantCopyInd
SafeArrayUnaccessData

ole32

CoCreateGuid
CLSIDFromString
OleRun
CoGetObjectContext
CoCreateInstanceEx
CLSIDFromProgID

shlwapi

SHDeleteKeyA
SHEnumValueA
SHStrDupA
SHQueryInfoKeyA
SHDeleteValueA
PathFileExistsA
PathIsDirectoryA
SHGetValueA
PathGetCharTypeA
PathIsContentTypeA

user32

ShowOwnedPopups
IsZoomed
DefFrameProcA

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data9
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 1024B - Virtual size: 681B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data7
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data8
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fd9f26a92ff1c917490e27487805455

Headers

File Characteristics

Imports

version

gdi32

msvcrt

comdlg32

shell32

comctl32

kernel32

advapi32

oleaut32

ole32

shlwapi

user32

Sections

.text Size: 42KB - Virtual size: 41KB

.data Size: 1024B - Virtual size: 928B

.data9 Size: 1KB - Virtual size: 1KB

.data3 Size: 1024B - Virtual size: 681B

.data7 Size: 223KB - Virtual size: 223KB

.data8 Size: 4KB - Virtual size: 3KB

.rsrc Size: 1024B - Virtual size: 996B

.text
Size: 42KB - Virtual size: 41KB

.data
Size: 1024B - Virtual size: 928B

.data9
Size: 1KB - Virtual size: 1KB

.data3
Size: 1024B - Virtual size: 681B

.data7
Size: 223KB - Virtual size: 223KB

.data8
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 1024B - Virtual size: 996B