2b8f07429431602e575c074052d54fc98be467528e76b0206c47bd095681aae0

Sharing

Copy URL Twitter E-mail

General

Target

2b8f07429431602e575c074052d54fc98be467528e76b0206c47bd095681aae0
Size

86KB
MD5

0e203b6e9b608474d0bf96c17828a21d
SHA1

a7eaebb5f5481ae466888128fdd2732b85b75ee9
SHA256

2b8f07429431602e575c074052d54fc98be467528e76b0206c47bd095681aae0
SHA512

fdd35376a136bc69f7ff6f257d2f98d51ca0cdd9e0fd599d70e86c014ce14d8ac9d25e193126e5d3f8070e45286512693fe7758a2d318c0af2f244378c877d73
SSDEEP

1536:QIUJlp1yeDTom2im/Tuh1vC+8zMYMjPRTfgNgV2sC3/58A2zOSiG:QIUJf1BDTPvVYkPRzrC3cPiG

Score

N/A

Malware Config

Signatures

Files

2b8f07429431602e575c074052d54fc98be467528e76b0206c47bd095681aae0
.exe windows x86

22188a8e7c16744b9d75f8278dfe2020

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadLocale
WritePrivateProfileStringA
SetErrorMode
GetExitCodeProcess
GetVersion
GetModuleHandleW
GetVersionExA
WideCharToMultiByte
GetCommandLineW
LocalAlloc
UnhandledExceptionFilter
VirtualProtectEx
GetSystemTimeAsFileTime
GetProcAddress
GetProcessHeap
GetOEMCP
VirtualProtect
SetLastError
WaitForSingleObject
GetModuleHandleA

msvcrt

memmove
_XcptFilter
_snprintf
__p__commode
_strnicmp
memset
_except_handler3
__set_app_type
__setusermatherr
_controlfp
atoi
free
strncmp
abort
atexit
_adjust_fdiv
_exit
_initterm
fwrite
calloc
__getmainargs
fread
__p__fmode
__p___initenv

user32

BeginPaint
DrawMenuBar
SetWindowPlacement
CheckMenuItem
PostMessageA
GetMessagePos
FindWindowA
GetWindow
CharNextA
GetWindowRect
ShowWindow
SetPropA
DrawFrameControl
RegisterClipboardFormatA
AdjustWindowRectEx
SetClassLongA
ReleaseDC

comctl32

ImageList_BeginDrag
CreateToolbarEx
ImageList_DragLeave
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_DrawEx
ImageList_LoadImageA
ImageList_Draw
ImageList_DragShowNolock
ImageList_Create
ImageList_Destroy

gdi32

GetTextExtentPointA
PatBlt
SetTextAlign
GetWindowExtEx
GetPaletteEntries
Arc
CreatePen
Chord
CloseEnhMetaFile
ExtSelectClipRgn

ole32

RevokeDragDrop
GetRunningObjectTable
CLSIDFromProgID
CoFreeUnusedLibraries
CoRegisterClassObject
CoDisconnectObject
OleFlushClipboard
CoInitializeEx
OleSetClipboard
StringFromGUID2
CoCreateGuid
IsAccelerator

advapi32

CopySid
RegEnumKeyW
SetSecurityDescriptorDacl
GetSecurityDescriptorDacl
RegQueryValueA
GetLengthSid
RegEnumValueA
RegOpenKeyA
CryptCreateHash
OpenThreadToken

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22188a8e7c16744b9d75f8278dfe2020

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

comctl32

gdi32

ole32

advapi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 62KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 62KB

.rsrc
Size: 6KB - Virtual size: 6KB