5ae0169d85999a4a3875644e02ca277d4401417991f1e74f8deca2958f9ac12e

Sharing

Copy URL

Twitter E-mail

General

Target

5ae0169d85999a4a3875644e02ca277d4401417991f1e74f8deca2958f9ac12e
Size

110KB
MD5

1302e8859c352762d2d0d6e2e0aad711
SHA1

6302e3036d7cf8f09434eed5d605fcbf7f4c5e6e
SHA256

5ae0169d85999a4a3875644e02ca277d4401417991f1e74f8deca2958f9ac12e
SHA512

9a58afbc7b668a8d7a12d97141ed80e7b71bcfa853c96f3fe0095c654563726ac203d7d43b80808692834dfe1bbdd14037d738619cd8b95ce9c418ffb81fb5b5
SSDEEP

1536:DnJ/4P9Mn/S+Oopij/2YpKEcUYIBZjjMpbDbZ8XdVU4DQrf5mf:DSm9U6Yjc2jgXta8rRmf

Score

N/A

Malware Config

Signatures

Files

5ae0169d85999a4a3875644e02ca277d4401417991f1e74f8deca2958f9ac12e
.exe windows x86

4a5dccd9f780d83324783db67a5d254c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryW
GetModuleHandleW
IsDebuggerPresent
GetVersion
GetTempPathW
GetFileTime
SetUnhandledExceptionFilter
EnumCalendarInfoA
GetOEMCP
GetFullPathNameA
FlushFileBuffers
GetNumberFormatA
GetStdHandle
lstrlenA
GetCurrentThreadId
CompareStringW
WritePrivateProfileStringA
VirtualAlloc
DeleteFileW
GetSystemInfo

msvcrt

fread
fwrite
_stricmp
atexit
_XcptFilter
sinh
strlen
fputs
__p__fmode
fopen
_initterm
_except_handler3
fclose
__setusermatherr
__getmainargs
__set_app_type
__p__commode
free
calloc
_adjust_fdiv
_exit
__dllonexit
__p___initenv
atoi
_controlfp

comdlg32

GetOpenFileNameA

user32

SetDlgItemTextA
IsRectEmpty
IntersectRect
GetLastActivePopup
ScreenToClient
GetClientRect
GetKeyState
DrawFrameControl
DeleteMenu
GetSysColorBrush
SetWindowLongA
CharLowerA
GetMenuItemCount
IsDialogMessageA

gdi32

SetRectRgn
PolylineTo
AddFontResourceA
ArcTo
GetTextMetricsA
EndDoc
EnumFontsA
GetBitmapBits
SetStretchBltMode
CreatePatternBrush

ole32

RegisterDragDrop
CoCreateGuid
StringFromCLSID
PropVariantClear
OleFlushClipboard
RevokeDragDrop
CoReleaseMarshalData
OleSetClipboard
IIDFromString
OleRun
GetRunningObjectTable
CreateBindCtx
CoInitializeSecurity
OleDraw

advapi32

CheckTokenMembership
RegCreateKeyA
GetSecurityDescriptorDacl
OpenSCManagerA
CryptAcquireContextA
RegEnumKeyExW
OpenProcessToken
CryptHashData
RegOpenKeyExW
InitiateSystemShutdownA
RegCloseKey

comctl32

CreatePropertySheetPageW
ImageList_GetImageCount
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_EndDrag
ImageList_Replace
PropertySheetW
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_DragLeave
ImageList_DragShowNolock

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a5dccd9f780d83324783db67a5d254c

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

gdi32

ole32

advapi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 28KB - Virtual size: 27KB