dfd0940fd51fe661ee6824df9a90d48a9c088120d7591289a27f8cfbceaa9035

Sharing

Copy URL Twitter E-mail

General

Target

dfd0940fd51fe661ee6824df9a90d48a9c088120d7591289a27f8cfbceaa9035
Size

106KB
MD5

0e9eb6dead6005b50a03a15a422137ea
SHA1

56f8ca1cd351df513c7ae5f2ac6b1b0fae98402d
SHA256

dfd0940fd51fe661ee6824df9a90d48a9c088120d7591289a27f8cfbceaa9035
SHA512

36d3b6bea80900ace17637642cce834a94be73ea67087f6ce713320c8d6ddea3f9073ec156441b67161ec64aaef373c0a1fbe8178bb3bf4cb1e602aaec86c392
SSDEEP

3072:NxZ8m8Vb5RANbdrpg7yhqG41FXnVZYdZgrB:zh8R5RYdFg7ce5AK

Score

N/A

Malware Config

Signatures

Files

dfd0940fd51fe661ee6824df9a90d48a9c088120d7591289a27f8cfbceaa9035
.exe windows x86

6e06f4bdd57c0bf93defda10f0641306

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
WritePrivateProfileStringA
SetLastError
GetThreadLocale
GetFileType
SetFileTime
GetTickCount
GetConsoleMode
IsBadReadPtr
GetLocaleInfoA
GetCurrentThreadId
GetCurrentDirectoryA
GetFileAttributesW
GetNumberFormatA
GlobalLock
GetTimeZoneInformation
VirtualProtect

msvcrt

free
strncmp
_adjust_fdiv
sinh
_controlfp
__p__commode
_exit
__set_app_type
calloc
__p___initenv
_errno
_vsnprintf
memset
__setusermatherr
__dllonexit
__p__fmode
exit
_initterm
atoi
_except_handler3
strcpy
strncpy
_XcptFilter
_stricmp
realloc
atexit
__getmainargs

comdlg32

GetOpenFileNameA

user32

CharNextA
WinHelpA
EnableWindow
DrawMenuBar
BeginPaint
UnhookWindowsHookEx
DefWindowProcA
SetScrollPos
GetWindowRect
SendMessageA
IsWindowVisible
RemovePropA
SetDlgItemTextA
SetWindowsHookExA

ole32

OleSetMenuDescriptor
CreateBindCtx
StringFromGUID2
ReleaseStgMedium
CoGetMalloc
CoUninitialize
OleSetClipboard
CoDisconnectObject
CoRevokeClassObject
CoGetClassObject
CoInitializeEx
OleInitialize
RevokeDragDrop
PropVariantClear
CoTaskMemRealloc

gdi32

GetBkColor
BitBlt
GetOutlineTextMetricsA
RectVisible
SetGraphicsMode
GetViewportOrgEx
SetTextCharacterExtra
SetArcDirection
IntersectClipRect
GetBkMode
GetTextExtentPointA
CreateDIBSection
RemoveFontResourceA

comctl32

ImageList_EndDrag
ImageList_SetOverlayImage
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_Replace
ImageList_GetImageCount
ImageList_LoadImageW
CreatePropertySheetPageA

advapi32

RegQueryInfoKeyW
RegEnumKeyExW
LookupPrivilegeValueA
CheckTokenMembership
GetTokenInformation
OpenServiceW
CryptHashData
RegEnumKeyExA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6e06f4bdd57c0bf93defda10f0641306

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

ole32

gdi32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 35KB

.rsrc Size: 29KB - Virtual size: 104KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 35KB

.rsrc
Size: 29KB - Virtual size: 104KB