0f69b037ab93357b4cfdc7cdeefbfe63121f6a8bcab0e3aa1d118b79fa14a5ea

Sharing

Copy URL Twitter E-mail

General

Target

0f69b037ab93357b4cfdc7cdeefbfe63121f6a8bcab0e3aa1d118b79fa14a5ea
Size

107KB
MD5

0698cbe154c83fad8edbc5d6ffdd2b2e
SHA1

286607c6ff9bbfeda6362c611aba6d3088fc1aaf
SHA256

0f69b037ab93357b4cfdc7cdeefbfe63121f6a8bcab0e3aa1d118b79fa14a5ea
SHA512

f60a9d4c255ea7932be9199301a0f13ce1e05f76f93f5c4a6c9b172a477b07c85d4f381f5254b65a4d2042e2f809b5330710fae00b77c5d562a1c1cb29e3fc47
SSDEEP

3072:2cPx7adDthfBTr166ym+Fzu0bB2Kx1uFLLRerCe0tnnrEp:2cPSD3f3bgb2fLleW3Zna

Score

N/A

Malware Config

Signatures

Files

0f69b037ab93357b4cfdc7cdeefbfe63121f6a8bcab0e3aa1d118b79fa14a5ea
.exe windows x86

844603bfdbfc2890bf72e33968a540a4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

UnhookWindowsHookEx
GetScrollPos
SetWindowTextA
EnableMenuItem
GetSysColorBrush
EqualRect
GetMessageA
EnumWindows
GetSysColor
FrameRect
GetSubMenu
PostQuitMessage
SetWindowPos

kernel32

GetTimeZoneInformation
GetCurrentProcessId
SetUnhandledExceptionFilter
GetSystemTime
RtlUnwind
GetFileAttributesA
QueryPerformanceCounter
FileTimeToSystemTime
VirtualAllocEx
ExitProcess
GetThreadLocale
InterlockedExchange
GetStartupInfoA
GetOEMCP
GetTempPathA

gdi32

CopyEnhMetaFileA
GetMapMode
SetViewportExtEx
CreateICW
ExcludeClipRect
CreateCompatibleBitmap
DPtoLP
FillRgn
SelectClipPath

ole32

CoInitializeSecurity
OleRun
StgOpenStorage
StringFromGUID2
CoTaskMemRealloc
CoRevokeClassObject
CoInitialize
DoDragDrop
CoCreateInstance

advapi32

CryptHashData
GetUserNameA
AdjustTokenPrivileges
RegCreateKeyA
RegCreateKeyExW
RegQueryValueExW
GetSecurityDescriptorDacl
CheckTokenMembership
FreeSid
QueryServiceStatus

msvcrt

iswspace
puts
_mbscmp
fprintf
strcspn
_CIpow
_strdup
__setusermatherr
__getmainargs
fflush
__initenv
raise
_lock
_fdopen
signal
strlen
_flsbuf
strncpy

comctl32

CreatePropertySheetPageA
ImageList_LoadImageW
ImageList_GetIcon
ImageList_LoadImageA
ImageList_Destroy
InitCommonControls
ImageList_DrawEx
ImageList_Write
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_SetIconSize

shell32

DoEnvironmentSubstW
ExtractIconExW
SHGetPathFromIDList
DragQueryFileW
CommandLineToArgvW
ExtractIconW
SHBrowseForFolderA
DragQueryFileA
DragAcceptFiles
ShellExecuteEx
ShellExecuteW

oleaut32

SysReAllocStringLen
SafeArrayGetUBound
SafeArrayPutElement
SafeArrayUnaccessData
SafeArrayRedim
SafeArrayCreate
VariantCopy
SafeArrayPtrOfIndex

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

844603bfdbfc2890bf72e33968a540a4

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 33KB - Virtual size: 33KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 31KB - Virtual size: 34KB

.text
Size: 33KB - Virtual size: 33KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 31KB - Virtual size: 34KB