5edbcc72b6ed582dfa71a8d6ecc804534eb6192ee50fe8cfa42e69fb06144f53

Sharing

Copy URL Twitter E-mail

General

Target

5edbcc72b6ed582dfa71a8d6ecc804534eb6192ee50fe8cfa42e69fb06144f53
Size

82KB
MD5

04674cf520c8db39666e10451f6fb1f2
SHA1

daf9bb1fe6d3959bb297cf19e503920d140cc2f2
SHA256

5edbcc72b6ed582dfa71a8d6ecc804534eb6192ee50fe8cfa42e69fb06144f53
SHA512

c8af4cc6c9954e11ddb02990e023f06b81e672e9067be79a1d9f42ba959b11cfdd0b5b26fa19052254244ea929b19de166802062ca9b9fd37fc1a03caf249da7
SSDEEP

1536:aiQcccWnvOJf6/eUmkMRmx3ZbLAj3zZdQuEVD0aFOUmq7P8WfzkGe4dgPFfdIJcg:/QcOwf6hMRmhSHEVTrmY8OTro

Score

N/A

Malware Config

Signatures

Files

5edbcc72b6ed582dfa71a8d6ecc804534eb6192ee50fe8cfa42e69fb06144f53
.exe windows x86

f018f246cab0127183509906fd8b0cb2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnableMenuItem
GetSysColorBrush
GetScrollPos
GetSysColor
SetWindowPos
UnhookWindowsHookEx
EnumWindows
EqualRect
GetMessageA
FrameRect
SetWindowTextA
PostQuitMessage
GetSubMenu

kernel32

GetOEMCP
InterlockedExchange
GetStartupInfoA
FileTimeToSystemTime
RtlUnwind
SetUnhandledExceptionFilter
GetCurrentProcessId
GetACP
GetFileAttributesA
GetThreadLocale
GetSystemTime
VirtualAllocEx
QueryPerformanceCounter
GetTempPathA
ExitProcess
GetTimeZoneInformation

gdi32

CreateCompatibleBitmap
CreateICW
ExcludeClipRect
SelectClipPath
SetViewportExtEx
GetMapMode
DPtoLP
FillRgn
CopyEnhMetaFileA

ole32

CoCreateInstance
DoDragDrop
CoInitializeSecurity
CoRevokeClassObject
OleRun
StgOpenStorage
CoInitialize
StringFromGUID2
CoTaskMemRealloc

advapi32

GetUserNameA
FreeSid
GetSecurityDescriptorDacl
CryptHashData
QueryServiceStatus
RegCreateKeyExW
RegCreateKeyA
CheckTokenMembership
RegQueryValueExW
AdjustTokenPrivileges

msvcrt

__setusermatherr
fflush
fprintf
__getmainargs
_lock
puts
__initenv
_fdopen
strncpy
_CIpow
_flsbuf
_mbscmp
strcspn
signal
strlen
_strdup
iswspace
raise

comctl32

ImageList_SetIconSize
InitCommonControls
ImageList_DragEnter
ImageList_Write
ImageList_LoadImageW
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetBkColor
ImageList_LoadImageA
ImageList_Destroy
ImageList_GetIconSize
CreatePropertySheetPageA
ImageList_DrawEx

shell32

DragQueryFileA
ExtractIconW
DoEnvironmentSubstW
SHBrowseForFolderA
CommandLineToArgvW
DragAcceptFiles
ShellExecuteW
SHGetPathFromIDList
DragQueryFileW
ShellExecuteEx
ExtractIconExW

oleaut32

SafeArrayRedim
SafeArrayCreate
VariantCopy
SafeArrayPutElement
SafeArrayUnaccessData
SafeArrayPtrOfIndex
SafeArrayGetUBound
SysReAllocStringLen

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

pnuxuxs
Size: - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

rxcsyzu
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f018f246cab0127183509906fd8b0cb2

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 34KB - Virtual size: 33KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 6KB - Virtual size: 34KB

pnuxuxs Size: - Virtual size: 32KB

rxcsyzu Size: - Virtual size: 4KB

.text
Size: 34KB - Virtual size: 33KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 6KB - Virtual size: 34KB

pnuxuxs
Size: - Virtual size: 32KB

rxcsyzu
Size: - Virtual size: 4KB