83bd2c7a12eccda18c9febd714a7c9746446073b6801d6bded367f4e3eaebcba

Sharing

Copy URL

Twitter E-mail

General

Target

83bd2c7a12eccda18c9febd714a7c9746446073b6801d6bded367f4e3eaebcba
Size

1.1MB
MD5

34482717578b6cddb0bc5b48e3288b70
SHA1

abe2156d3efaba6f3a6d2be3acab63fcc7145667
SHA256

83bd2c7a12eccda18c9febd714a7c9746446073b6801d6bded367f4e3eaebcba
SHA512

2f81a0de9151834a9eb923e9ac90eba75bea36e43b97e97a69bca75ffa3de2d37cc44d50dffab5b276e541475a0e610f880e1bfe23a5146aac863822d0acba52
SSDEEP

24576:cb7S5jCNqwooJVSgJgVSv8PMLWePcbWmxB7PyO:q7S52NqwooJVSgJgVCqB7

Score

N/A

Malware Config

Signatures

Files

83bd2c7a12eccda18c9febd714a7c9746446073b6801d6bded367f4e3eaebcba
.exe windows x86

f5ea49c4819ac44b37f77e4cfc19af61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
EnterCriticalSection
GetFileAttributesA
GetFullPathNameA
GetModuleFileNameA
GetModuleHandleA
GetLastError
GlobalAddAtomA
GlobalDeleteAtom
GetTickCount
GetCurrentThreadId
FindClose
FindNextFileA
FindFirstFileA
GetWindowsDirectoryA
lstrcmpA
LoadLibraryA
FreeLibrary
GetCurrentProcess
GetProcAddress
SetLastError
LockResource
LoadResource
FindResourceExA
FindResourceA
LocalFree
LocalAlloc
CloseHandle
TerminateProcess
OpenProcess
Sleep
DeleteFileA
SetFileAttributesA
GetPrivateProfileStringA
GetCommandLineA
MultiByteToWideChar
MoveFileA
CopyFileA
HeapAlloc
HeapFree
GetVersionExA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
CreateProcessA
GetStartupInfoA
CreateDirectoryA
FlushFileBuffers
CreateFileA
GetDriveTypeA
lstrcatA
InitializeCriticalSection
DeleteCriticalSection
QueryPerformanceFrequency
QueryPerformanceCounter
GetTempPathA
OutputDebugStringA
WriteFile
GetUserDefaultLangID
GetCurrentDirectoryA
GetEnvironmentVariableA
GetShortPathNameA
GetSystemDirectoryA
GetLocaleInfoA
GetSystemDefaultLangID
FormatMessageA
CompareFileTime
GetFileSize
GetFileTime
OpenFile
WritePrivateProfileStringA
WideCharToMultiByte
CreateMutexA
OpenMutexA
InterlockedExchange
RaiseException
lstrlenW
MulDiv
lstrcpyA
GlobalFindAtomA
lstrcmpiA
GlobalGetAtomNameA
GetVersion
InterlockedIncrement
InterlockedDecrement
GlobalUnlock
GlobalLock
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
lstrcpynA
DuplicateHandle
ReadFile
SetFilePointer
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
GetThreadLocale
GetProcessVersion
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetCPInfo
GetOEMCP
SetErrorMode
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
IsBadReadPtr
lstrlenA
SetStdHandle
GetFileType
HeapSize
HeapReAlloc
GetACP
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA

oledlg

ord8

ole32

CLSIDFromProgID
CoTaskMemAlloc
CLSIDFromString
CoTaskMemFree
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
VariantClear

Sections

.text
Size: 356KB - Virtual size: 354KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 588KB - Virtual size: 587KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f5ea49c4819ac44b37f77e4cfc19af61

Headers

File Characteristics

Imports

kernel32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 356KB - Virtual size: 354KB

.rdata Size: 68KB - Virtual size: 65KB

.data Size: 48KB - Virtual size: 127KB

.rsrc Size: 588KB - Virtual size: 587KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 356KB - Virtual size: 354KB

.rdata
Size: 68KB - Virtual size: 65KB

.data
Size: 48KB - Virtual size: 127KB

.rsrc
Size: 588KB - Virtual size: 587KB

.rmnet
Size: 60KB - Virtual size: 60KB