4b5319bfbee1f8b04bf58ac301f107483e3e2debfe3948e7e9bd942d6c25a402

Sharing

Copy URL Twitter E-mail

General

Target

4b5319bfbee1f8b04bf58ac301f107483e3e2debfe3948e7e9bd942d6c25a402
Size

179KB
MD5

07756444c62d276d75025e2b28e2c206
SHA1

a545ca76ba931f56d576e9134e1fed4979730d1a
SHA256

4b5319bfbee1f8b04bf58ac301f107483e3e2debfe3948e7e9bd942d6c25a402
SHA512

719ef4d7874a60ade2ceff43dc647006bb8f977f1185a0b1fef1bd1d6a728b377751b0e4b90040bf87504ea24039b863c5ce55488bba905710cff9b0da2fa5ce
SSDEEP

3072:IXB6+4bndqJK/5u9lNg6rd7SLovAosTKEow:ZdtxunNg6/Y+

Score

N/A

Malware Config

Signatures

Files

4b5319bfbee1f8b04bf58ac301f107483e3e2debfe3948e7e9bd942d6c25a402
.exe windows x86

d2ef9f7bf5c8a73aa02700a5bc78c796

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnumWindows
FrameRect
GetMessageA
UnhookWindowsHookEx
GetSysColor
EqualRect
EnableMenuItem
SetWindowTextA
GetSysColorBrush
PostQuitMessage
SetWindowPos
GetSubMenu
GetScrollPos

kernel32

SetUnhandledExceptionFilter
GetTickCount
FileTimeToSystemTime
GetCurrentProcessId
VirtualAllocEx
GetSystemTime
RtlUnwind
ExitProcess
GetOEMCP
InterlockedExchange
QueryPerformanceCounter
GetFileAttributesA
GetTempPathA
GetThreadLocale
GetTimeZoneInformation
GetStartupInfoA

gdi32

CreateCompatibleBitmap
CreateICW
GetMapMode
DPtoLP
FillRgn
ExcludeClipRect
CopyEnhMetaFileA
SetViewportExtEx
SelectClipPath

ole32

CoCreateInstance
DoDragDrop
CoInitialize
CoInitializeSecurity
CoRevokeClassObject
OleRun
CoTaskMemRealloc
StgOpenStorage
StringFromGUID2

advapi32

AdjustTokenPrivileges
CheckTokenMembership
FreeSid
CryptHashData
QueryServiceStatus
RegCreateKeyA
GetUserNameA
RegQueryValueExW
RegCreateKeyExW
GetSecurityDescriptorDacl

msvcrt

__getmainargs
strcspn
puts
__setusermatherr
_mbscmp
_strdup
__initenv
strlen
_lock
_CIpow
fprintf
_flsbuf
_fdopen
strncpy
fflush
iswspace
signal
raise

comctl32

ImageList_Write
ImageList_LoadImageA
ImageList_GetIcon
ImageList_LoadImageW
CreatePropertySheetPageA
ImageList_GetIconSize
ImageList_SetIconSize
InitCommonControls
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_GetBkColor
ImageList_DragEnter
ImageList_DrawEx

shell32

ShellExecuteEx
DragQueryFileA
DragAcceptFiles
CommandLineToArgvW
ShellExecuteW
DoEnvironmentSubstW
SHGetPathFromIDList
ExtractIconW
DragQueryFileW
ExtractIconExW
SHBrowseForFolderA

oleaut32

SafeArrayRedim
SafeArrayPutElement
SafeArrayGetUBound
VariantCopy
SysReAllocStringLen
SafeArrayUnaccessData
SafeArrayCreate
SafeArrayPtrOfIndex

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d2ef9f7bf5c8a73aa02700a5bc78c796

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 6KB - Virtual size: 34KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 6KB - Virtual size: 34KB