3858306489a7cd70576f67f6fada8ea2cf59ae1584806d5d8c209c3051b2543d

General

Target

3858306489a7cd70576f67f6fada8ea2cf59ae1584806d5d8c209c3051b2543d
Size

348KB
MD5

0cbcaa570b7529e2a06c879f11375189
SHA1

01789f040ecd0ad4f38158e68d025cdc83b4b47e
SHA256

3858306489a7cd70576f67f6fada8ea2cf59ae1584806d5d8c209c3051b2543d
SHA512

02546190fe0428ea80beabaf9e03fde67d57e971068e1030a009976289e27c0541db958deabcfaf8856d412902e67a2b64167d724c153e5602c1ede64a82c417
SSDEEP

6144:WU9PJYute2VNpZBkaXgSO+0DQUMsjSSAYYlpH1ULOF:JwylVNR3Xan5jSSAYYlpHiL

Score

N/A

Malware Config

Signatures

Files

3858306489a7cd70576f67f6fada8ea2cf59ae1584806d5d8c209c3051b2543d
.exe windows x86

dcf0736777cc2eb10e502458da17b333

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

MkParseDisplayName
CLSIDFromProgID
CoCreateInstanceEx
CreateBindCtx
StgCreateDocfileOnILockBytes
WriteClassStm
StgOpenStorage
StringFromIID

kernel32

GetModuleHandleW
FindFirstFileA
GetModuleHandleA
GetACP
lstrlenA
VirtualQuery
LoadLibraryA
GetCommandLineA
LoadLibraryExA
GetCommandLineW
ExitProcess
lstrlenW
GetFileType
GetProcAddress
VirtualAllocEx
lstrcatA

msvcrt

log10
wcstol
swprintf
rand
memmove
tolower
cos
fabs

shell32

SHGetSpecialFolderLocation
Shell_NotifyIconA
SHGetDesktopFolder

shlwapi

SHSetValueA
PathIsContentTypeA
SHQueryInfoKeyA
SHStrDupA

oleaut32

VariantChangeType
SysStringLen
GetErrorInfo
SysFreeString
SysReAllocStringLen
VariantCopyInd
SafeArrayUnaccessData

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dcf0736777cc2eb10e502458da17b333

Headers

File Characteristics

Imports

ole32

kernel32

msvcrt

shell32

shlwapi

oleaut32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 512B - Virtual size: 512B

.data Size: 10KB - Virtual size: 10KB

.bss Size: 250KB - Virtual size: 250KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 512B - Virtual size: 512B

.data
Size: 10KB - Virtual size: 10KB

.bss
Size: 250KB - Virtual size: 250KB

.rsrc
Size: 9KB - Virtual size: 9KB