d5f837831b5eb9fd8c3a9de59d9261f5f760b7387af5acb3e16ec59bb0c7b600

Sharing

Copy URL

Twitter E-mail

General

Target

d5f837831b5eb9fd8c3a9de59d9261f5f760b7387af5acb3e16ec59bb0c7b600
Size

168KB
MD5

0418526855a549fb116f637b8dd861e1
SHA1

127f3d94bc3ad1a78683eb1b9cbd2abedd3278eb
SHA256

d5f837831b5eb9fd8c3a9de59d9261f5f760b7387af5acb3e16ec59bb0c7b600
SHA512

a309a63c95f0ec2dfae574fa5bd20a35c9d6fca9f17a9f2485a95acc040dbb335469d89a510a8f4832cf7521067712f7ed2f9099e13f016cdfb051859f454b97
SSDEEP

1536:rmrQ1QwOMlUZ6gErRYLdkUY8fjiqwPaIwPetCqshyxv0gGTyIt:aQCwllUsg2YaUYANsaINtCq0Ov0B+It

Score

N/A

Malware Config

Signatures

Files

d5f837831b5eb9fd8c3a9de59d9261f5f760b7387af5acb3e16ec59bb0c7b600
.exe windows x86

8e0c9337dd171b1ffab04bf8a0ee6024

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RtlUnwind
GetStdHandle
GlobalHandle
VirtualProtect
IsBadReadPtr
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetSystemTimeAsFileTime
SetThreadLocale
ExpandEnvironmentStringsA
LocalFileTimeToFileTime
GetStartupInfoA
FileTimeToDosDateTime
SetLastError

user32

CallWindowProcA
ClientToScreen
IsDialogMessageA
DrawMenuBar
MessageBeep
RegisterClassA
GetDC
ReleaseCapture
GetSysColor
EqualRect
DestroyMenu
GetMenuStringA
GetClassInfoA

msvcrt

sqrt
memcmp
_purecall
_initterm
__set_app_type
isdigit
memcpy
_acmdln
__p__commode
swprintf
_itow
wctomb
__setusermatherr
exit
_XcptFilter
rewind
__p__fmode
_adjust_fdiv
__getmainargs
_except_handler3

comctl32

ImageList_GetIconSize
CreateStatusWindowA
ImageList_GetBkColor
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_SetBkColor
InitializeFlatSB
ImageList_Add
ImageList_EndDrag

advapi32

RegQueryInfoKeyW
OpenSCManagerA
CryptHashData
RegEnumKeyA
InitiateSystemShutdownA
AdjustTokenPrivileges
RegDeleteKeyW
CopySid
DeleteService
GetLengthSid

shell32

SHBrowseForFolderW
ShellExecuteA
ShellExecuteW
ShellExecuteEx
SHGetFolderPathW
Shell_NotifyIconW

ole32

CoReleaseMarshalData
DoDragDrop
CoInitializeSecurity
IsEqualGUID
CoGetInterfaceAndReleaseStream
CLSIDFromProgID
OleRun
OleGetClipboard
OleInitialize
CoInitialize
OleIsCurrentClipboard

oleaut32

VariantInit
SysAllocStringByteLen
SafeArrayGetElement
SafeArrayUnaccessData
GetErrorInfo
GetActiveObject
SetErrorInfo
VariantClear

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ydata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8e0c9337dd171b1ffab04bf8a0ee6024

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

comctl32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 69KB - Virtual size: 69KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.ydata Size: 60KB - Virtual size: 60KB

.text
Size: 69KB - Virtual size: 69KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB

.ydata
Size: 60KB - Virtual size: 60KB