d3d902861b3aa85440000eddcb0f0594c5167792061c05f5a684d6e580a7ec4d

Sharing

Copy URL Twitter E-mail

General

Target

d3d902861b3aa85440000eddcb0f0594c5167792061c05f5a684d6e580a7ec4d
Size

152KB
MD5

0dc5eca930c1afe721bad54a3bfe7265
SHA1

6f6b3ed1b574b5399dddf0a05ef981905f499404
SHA256

d3d902861b3aa85440000eddcb0f0594c5167792061c05f5a684d6e580a7ec4d
SHA512

fe5aeb0a138160a9accbf676735d476f3ed343d4333d7f8aaaf1d03328596d98f21593d0ab4e91562535587020311f9635d3d529150b5520b1fb7ac37246c116
SSDEEP

3072:blMi2+CvSp2+ZnnwxdDjoDwIlrMxp4xYuVBGk704NsN8:JJeEZDwINwp4x5V8knsN

Score

N/A

Malware Config

Signatures

Files

d3d902861b3aa85440000eddcb0f0594c5167792061c05f5a684d6e580a7ec4d
.exe windows x86

a7a47d18e14a8b6c81dcba6bc14251d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
GetCommandLineA
SetCurrentDirectoryA
GetSystemDirectoryW
lstrcpynA
GetModuleHandleA
GetPrivateProfileStringA
RemoveDirectoryA
WritePrivateProfileStringA
GetStartupInfoA
UnhandledExceptionFilter
IsBadWritePtr

user32

GetFocus
GetParent
SetCursor
GetCursorPos
InvalidateRect
CreateMenu
ShowWindow
MessageBoxA
GetMenu
GetSysColor
GetWindow
UpdateWindow
EqualRect
SetWindowPos

msvcrt

log10
__p__commode
strtoul
_XcptFilter
_open_osfhandle
__getmainargs
_acmdln
_except_handler3
strchr
_initterm
setlocale
strpbrk
_wfopen
_adjust_fdiv
__p__fmode
exit
_fullpath
iswspace
__setusermatherr
qsort
__set_app_type

shell32

SHGetSettings
SHGetPathFromIDListW
SHChangeNotify
SHGetPathFromIDListA
SHGetFolderLocation
SHGetDiskFreeSpaceExW
SHAppBarMessage
Shell_NotifyIconA
SHCreateDirectoryExW
SHGetFolderPathW
FindExecutableW
SHFileOperationW
SHAddToRecentDocs

comctl32

ImageList_SetDragCursorImage
ImageList_DragShowNolock
ImageList_Write
ImageList_SetBkColor
InitializeFlatSB
ImageList_Destroy
ImageList_Draw
DestroyPropertySheetPage
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_GetImageInfo

ole32

IsAccelerator
StgOpenStorage
OleRun
CoGetMalloc
StgOpenStorageOnILockBytes
CoGetInterfaceAndReleaseStream
CoDisconnectObject
CoSetProxyBlanket
CoInitializeEx
CoUninitialize
IsEqualGUID

oleaut32

GetErrorInfo
LoadTypeLib
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayPutElement

advapi32

RegEnumValueW
RevertToSelf
RegCreateKeyExA
AllocateAndInitializeSid
DeleteService
InitiateSystemShutdownA
RegCreateKeyA
OpenThreadToken
FreeSid
EqualSid
RegEnumKeyW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a7a47d18e14a8b6c81dcba6bc14251d3

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

comctl32

ole32

oleaut32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 141KB - Virtual size: 140KB

.data Size: 6KB - Virtual size: 5KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 141KB - Virtual size: 140KB

.data
Size: 6KB - Virtual size: 5KB