06250885a28d2bb8a82039b25c326a9d489d36b658404dc06748a36560ccab4d

Sharing

Copy URL Twitter E-mail

General

Target

06250885a28d2bb8a82039b25c326a9d489d36b658404dc06748a36560ccab4d
Size

126KB
MD5

0c73b21676ac24d14f526fcc0af6d217
SHA1

9fea5fff8102f2dd68ce4c429ff67576ef723682
SHA256

06250885a28d2bb8a82039b25c326a9d489d36b658404dc06748a36560ccab4d
SHA512

c9068bb30e42e8d0218a2c6e2b67b0cbafaca3257f67b8801f4da6768af3b8f5d55b16b607224f416f5ac41011d53d816e0563dc520e5b2d1cfb3bf90e6661a9
SSDEEP

3072:DVxJcMWj/wD6vOhkCYo1FhTYUv3fJ+Q9T7WxS0Wy46jNdwK:JS8D66kCYKhM6Y4TaA0Wy46Bb

Score

N/A

Malware Config

Signatures

Files

06250885a28d2bb8a82039b25c326a9d489d36b658404dc06748a36560ccab4d
.exe windows x86

d27d098aa9a9d3fd5af982f106538854

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

exit
_XcptFilter
__set_app_type
__p__commode
_controlfp
sin
_initterm
_umask
_write
getenv
_except_handler3
_acmdln
__getmainargs
log
tolower
_adjust_fdiv
__p__fmode
_stat
wcstoul
_snwprintf
wcscmp
__setusermatherr

kernel32

GetStartupInfoA
GetEnvironmentStrings
GetConsoleOutputCP
GetModuleHandleA
InterlockedIncrement
GetFileTime
SetFileTime
SetFilePointer
VirtualProtect
InterlockedDecrement
GetCurrentDirectoryA

ole32

CoSetProxyBlanket
CoCreateGuid
CLSIDFromProgID
GetRunningObjectTable
OleIsCurrentClipboard
CoInitializeSecurity
CLSIDFromString
CoUninitialize
CoDisconnectObject
CoTaskMemAlloc

version

VerQueryValueA
VerInstallFileW
VerInstallFileA
VerFindFileW
VerLanguageNameA
GetFileVersionInfoW
GetFileVersionInfoSizeA

gdi32

CombineRgn
MoveToEx
SetTextAlign
GetObjectType
GetTextMetricsA
EndDoc
TextOutW
EnumEnhMetaFile
DeleteEnhMetaFile
ScaleWindowExtEx
SetROP2
EndPage
GetWindowExtEx
RealizePalette

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Write
CreateToolbarEx
ImageList_DragLeave
InitCommonControls
ImageList_SetOverlayImage
PropertySheetW
ImageList_GetIcon
ImageList_Remove

user32

InsertMenuA
IsIconic
GetWindowLongA
ShowCursor
SetClassLongA
IsRectEmpty
RegisterWindowMessageA
IsWindowVisible
MapWindowPoints
WinHelpA
SetClipboardData

shell32

SHBrowseForFolder
SHGetSpecialFolderPathW
SHGetFolderLocation
SHFileOperationA
SHAddToRecentDocs
SHGetFolderPathW
SHGetSettings

oleaut32

VariantClear
SafeArrayGetUBound
CreateErrorInfo
SysAllocStringLen
GetActiveObject
VariantCopyInd
SafeArrayGetElement

advapi32

RegDeleteKeyA
CryptAcquireContextA
GetSecurityDescriptorDacl
SetSecurityDescriptorDacl
RegQueryValueA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d27d098aa9a9d3fd5af982f106538854

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

version

gdi32

comctl32

user32

shell32

oleaut32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 17KB - Virtual size: 42KB

.rsrc Size: 91KB - Virtual size: 90KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 17KB - Virtual size: 42KB

.rsrc
Size: 91KB - Virtual size: 90KB