5486420fee1b01203015fdcf1c4e5de1bcc7742e0254271988f04d47414b5d00

Sharing

Copy URL Twitter E-mail

General

Target

5486420fee1b01203015fdcf1c4e5de1bcc7742e0254271988f04d47414b5d00
Size

128KB
MD5

0f225f85c6070f9fdbdd01f402e1ee82
SHA1

ed2cc9ae4f4d9b233fb3a267d3bb55db76ee0932
SHA256

5486420fee1b01203015fdcf1c4e5de1bcc7742e0254271988f04d47414b5d00
SHA512

e96d4faa7bae6762424a26ad44b25f0371cd7705b74233ede06edeb14ab13c5f9cf707faa1878c19921c790c5fcc9c623f2c1ba85c458cf6a16cdf8f346d420b
SSDEEP

3072:0/5DaCTWhJ4i+CPguyOX7XlVUr96gLf6BVkCA:0B2SOXblk95Lf8SCA

Score

N/A

Malware Config

Signatures

Files

5486420fee1b01203015fdcf1c4e5de1bcc7742e0254271988f04d47414b5d00
.exe windows x86

143c8395ec17ac3453888290767d4e5d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
__setusermatherr
signal
sprintf
free
exit
fwrite
realloc
__getmainargs
fclose
memset
calloc
_except_handler3
_acmdln
__p__fmode
__p__commode
_initterm
_iob
sqrt
memmove
__set_app_type
_cexit
_exit

comdlg32

GetOpenFileNameA

kernel32

GetDateFormatA
GetStringTypeExA
SetErrorMode
GetCurrentProcessId
SetEnvironmentVariableA
GetNumberFormatA
GetStartupInfoA
GetSystemDefaultLCID
GetSystemDirectoryW

user32

GetWindowPlacement
ScreenToClient
SendMessageA
GetKeyState
DispatchMessageA
CallWindowProcA
SystemParametersInfoA
GetMenuStringA
PtInRect
GetClientRect
GetIconInfo
GetSysColor
SetDlgItemTextA
IsDialogMessageA
OemToCharA

gdi32

CreateHatchBrush
StrokePath
CreateDCA
CopyEnhMetaFileA
CreateMetaFileW
StartDocW
GetTextFaceA
GetClipRgn
FillRgn
PolyDraw
CreateFontW
PlayMetaFileRecord

comctl32

ImageList_SetImageCount
PropertySheetA
ImageList_GetBkColor
PropertySheetW
ImageList_Draw
InitCommonControlsEx
ImageList_BeginDrag
ImageList_Write
ImageList_DragShowNolock
ImageList_Destroy
ImageList_DragLeave
ImageList_Replace
ImageList_EndDrag
DestroyPropertySheetPage
ImageList_GetImageInfo

ole32

StgOpenStorageOnILockBytes
StringFromCLSID
OleSetMenuDescriptor
CoGetClassObject
CoTaskMemFree
ProgIDFromCLSID
CoRegisterMessageFilter
CoGetMalloc
CoGetInterfaceAndReleaseStream

advapi32

CopySid
RegCreateKeyExW
RegOpenKeyA
GetLengthSid
RegCloseKey
RegDeleteValueA
RegOpenKeyW
AllocateAndInitializeSid
RegQueryValueExA
GetUserNameA
OpenThreadToken
RegEnumKeyExA
CryptDestroyHash
RegEnumValueA
RegDeleteValueW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

143c8395ec17ac3453888290767d4e5d

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

comctl32

ole32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 19KB - Virtual size: 18KB