4713df75d861f4404a131b0216570b6ca2cae0e56db028dc22516d3adf7cdee6

Sharing

Copy URL Twitter E-mail

General

Target

4713df75d861f4404a131b0216570b6ca2cae0e56db028dc22516d3adf7cdee6
Size

84KB
MD5

130d0ce4ff11e26beabdcb29049ab578
SHA1

b92423569c3ee2ce43783a0cd505a64ce045f067
SHA256

4713df75d861f4404a131b0216570b6ca2cae0e56db028dc22516d3adf7cdee6
SHA512

cf3499fa8bf8cf98defe366cde43050afd6e7df5567a7348e4aaaa73da183386de1d003725acd3471f1040d69a6856dc6ac10a80354b36492c1ca00f343a73f5
SSDEEP

1536:oJ2BzgDbgI/clxRNyppLbsmeJv6d0VLAn69CECYTBE+L/b9UVeM4kcI52:bBEDbeljNopLaVen69CECYTBEEUVeMvm

Score

N/A

Malware Config

Signatures

Files

4713df75d861f4404a131b0216570b6ca2cae0e56db028dc22516d3adf7cdee6
.exe windows x86

3b777e75e540b7794421ee68f53afe5e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_write
exit
sqrt
atexit
_acmdln
atoi
__p__commode
strcmp
_initterm
__p__fmode
_setmode
signal
fputc
fprintf
_exit
malloc
_adjust_fdiv
strchr
abort
_snprintf
__getmainargs
calloc
__setusermatherr
__set_app_type
_except_handler3
free

kernel32

WriteFile
IsBadReadPtr
ExpandEnvironmentStringsA
IsDBCSLeadByte
IsDebuggerPresent
GetStartupInfoA
GlobalLock
GetModuleHandleW
FreeLibrary
GetUserDefaultLangID
ReadFile
GetModuleFileNameW

gdi32

BitBlt
SetDIBitsToDevice
CreateDCA
SetBkColor
FrameRgn
OffsetViewportOrgEx
Chord
SetViewportOrgEx
GetDCOrgEx
CreateSolidBrush
DPtoLP
StretchBlt
RemoveFontResourceA
CreateICW
CombineRgn
SelectClipPath

comctl32

ImageList_Draw
ImageList_SetIconSize
ImageList_GetIconSize
CreatePropertySheetPageW
ImageList_SetDragCursorImage
ImageList_BeginDrag
ImageList_Read
ImageList_Destroy
ImageList_LoadImageW
PropertySheetW
ImageList_DragLeave
ImageList_SetImageCount
CreateToolbarEx
ImageList_GetIcon

ole32

ProgIDFromCLSID
OleDraw
OleFlushClipboard
CreateILockBytesOnHGlobal
CoInitializeEx
CoCreateInstance
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRegisterMessageFilter
IsAccelerator

advapi32

RegDeleteValueW
RegEnumKeyExW
CryptCreateHash
RegOpenKeyExA
CryptReleaseContext
AdjustTokenPrivileges
LookupPrivilegeValueW
DeleteService
RegQueryInfoKeyA
OpenThreadToken
RegEnumValueA
CryptHashData

oleaut32

SetErrorInfo
SysStringByteLen
SafeArrayGetUBound
GetActiveObject
CreateErrorInfo
SafeArrayGetElement
VariantClear
SafeArrayRedim

user32

CreatePopupMenu
EmptyClipboard
TrackPopupMenu
WinHelpA
GetClassNameA
SetWindowTextA
IntersectRect
GetDC
LoadCursorA
GetMenuItemCount

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b777e75e540b7794421ee68f53afe5e

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

comctl32

ole32

advapi32

oleaut32

user32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 3KB - Virtual size: 2KB