fb607de3f60258f6dc99ea3eecfd7f83979b09e43448edb71a2de19d1724f9d6

Sharing

Copy URL

Twitter E-mail

General

Target

fb607de3f60258f6dc99ea3eecfd7f83979b09e43448edb71a2de19d1724f9d6
Size

87KB
MD5

069f14c4aacbac59df70b89fdde8e7b4
SHA1

7d9e236b3588e2212821dd5f515425b9382b7be6
SHA256

fb607de3f60258f6dc99ea3eecfd7f83979b09e43448edb71a2de19d1724f9d6
SHA512

29a0ba885d1778b97b81e5189321cc26fe8938f361974d7dc6657a96c8976b7835df7286d3dd31e03ca6e585edbcc3c41f0d34b3fcd474f59df03119a09a6d44
SSDEEP

1536:F3El4ghBY9HUkIAqYpkNLNSwtFsoa5J1mRnJ8hKhNQ0+:aljBQt0hNo5eRnJ8f0+

Score

N/A

Malware Config

Signatures

Files

fb607de3f60258f6dc99ea3eecfd7f83979b09e43448edb71a2de19d1724f9d6
.exe windows x86

bc3dea42d094b0448d9d5b8326dfc663

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
memset
getenv
_exit
__set_app_type
__getmainargs
fwrite
_acmdln
_adjust_fdiv
__p__commode
strstr
free
fputs
__dllonexit
sprintf
strncmp
memmove
_initterm
__setusermatherr
calloc
sqrt
_except_handler3

comdlg32

GetOpenFileNameA

kernel32

DeviceIoControl
OutputDebugStringA
GetSystemDirectoryW
SetEnvironmentVariableA
VirtualAlloc
GetCommandLineW
GetNumberFormatA
CompareStringW
GetStartupInfoW
DeleteFileW
IsBadWritePtr
lstrlenW
DuplicateHandle
MoveFileA
GetPrivateProfileStringA
GetTempPathA
GetStartupInfoA

user32

SetDlgItemTextA
FrameRect
GetScrollRange
UpdateWindow
DrawIcon
GetMenuStringA
SetWindowsHookExA
DeleteMenu
GetMenuState
GetSysColor
SetRect
IsRectEmpty
SetWindowLongA

gdi32

CopyMetaFileW
FillPath
GetTextFaceA
CreateDCA
SetWorldTransform
SelectClipPath
CreateBitmap
PlayMetaFileRecord
SetColorAdjustment
GetObjectW
CreateRectRgn
SetDIBitsToDevice
GetViewportExtEx
SetTextJustification
GetTextExtentPointA

ole32

GetRunningObjectTable
CoLoadLibrary
RegisterDragDrop
CoFreeUnusedLibraries
DoDragDrop
CoTaskMemFree
CoTaskMemRealloc
OleInitialize
CoCreateGuid
ProgIDFromCLSID
StringFromIID
OleDraw
StringFromGUID2
StringFromCLSID

comctl32

ImageList_GetImageInfo
ImageList_Create
ImageList_SetIconSize
ImageList_GetIcon
ImageList_Add
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_BeginDrag
CreatePropertySheetPageA
ImageList_EndDrag

advapi32

RevertToSelf
LookupPrivilegeValueA
CryptCreateHash
SetSecurityDescriptorDacl
RegCreateKeyExW
RegEnumKeyExW
GetTokenInformation
SetSecurityDescriptorGroup
RegFlushKey
AdjustTokenPrivileges
SetSecurityDescriptorOwner

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bc3dea42d094b0448d9d5b8326dfc663

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

ole32

comctl32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 48KB

.rsrc Size: 17KB - Virtual size: 92KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 48KB

.rsrc
Size: 17KB - Virtual size: 92KB