7f5d0a81d7143e321f3f2771353efbdf22805db7f408f9ea6137596f2254e246

General

Target

7f5d0a81d7143e321f3f2771353efbdf22805db7f408f9ea6137596f2254e246
Size

423KB
MD5

06a3f047be68dd5b9e0c090a30fa6630
SHA1

899f868d42ac44ebe7a1fd7b4acaefe772739f9b
SHA256

7f5d0a81d7143e321f3f2771353efbdf22805db7f408f9ea6137596f2254e246
SHA512

672758551a5eac0a98476618160efbc4c9f7f1ac2abe39a5ab46c5bddb96fb22fd559fcd2d43702a3763520de7e917c8dcf504430634835ac0348509f1a664b3
SSDEEP

12288:FO6CgFm16XOf9ptxH07jUjSsjaPfv6rA7:FO6CKPi9ptGsusW3SrA7

Score

N/A

Malware Config

Signatures

Files

7f5d0a81d7143e321f3f2771353efbdf22805db7f408f9ea6137596f2254e246
.exe windows x86

18e8afe1b8c917351532fafbfa9e7ad7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFileOperationW
SHBrowseForFolder
ExtractAssociatedIconExA
FindExecutableW
SheChangeDirA
ExtractAssociatedIconA
DragQueryFile
DragQueryPoint
SHGetPathFromIDListA
SHGetSettings
SHGetPathFromIDList
InternalExtractIconListW

user32

DdeCreateDataHandle
ToUnicodeEx
GetClassInfoExW
KillTimer
SetWindowRgn
IsWindow
GetSysColor
DlgDirSelectExA
GetScrollPos
RealGetWindowClass
CallMsgFilterW
SwapMouseButton
ExcludeUpdateRgn
SetWindowsHookExA
GetMenuItemInfoW

gdi32

GetBkColor
PaintRgn
GetDeviceGammaRamp
SetICMProfileW
EnumICMProfilesW
GetCurrentPositionEx
GdiGetBatchLimit
CreateEllipticRgnIndirect

comdlg32

ChooseColorA
PageSetupDlgW
GetSaveFileNameW
GetFileTitleW
ChooseFontW
FindTextA
PageSetupDlgA
ReplaceTextA
ChooseColorW
GetOpenFileNameW

kernel32

GetCurrentProcessId
FindAtomW
GetDiskFreeSpaceExA
VirtualAlloc
QueryPerformanceCounter
CreateWaitableTimerA
RtlUnwind
EnumCalendarInfoExA
InterlockedExchange
InitializeCriticalSectionAndSpinCount
CreateSemaphoreA
GetTickCount
LocalFlags
GetModuleHandleA
GlobalFindAtomA
VirtualQuery
InterlockedCompareExchange
ExitProcess
GetProcAddress
TerminateProcess
GetModuleFileNameA
HeapAlloc
GlobalAlloc
HeapReAlloc
GetCurrentThreadId
GetCurrentProcess
GetSystemTimeAsFileTime
LoadLibraryA
GetModuleHandleW
HeapFree

advapi32

LogonUserA
RegDeleteValueA

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 270KB - Virtual size: 269KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18e8afe1b8c917351532fafbfa9e7ad7

Headers

File Characteristics

Imports

shell32

user32

gdi32

comdlg32

kernel32

advapi32

Sections

.text Size: 144KB - Virtual size: 144KB

.data Size: 270KB - Virtual size: 269KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 144KB - Virtual size: 144KB

.data
Size: 270KB - Virtual size: 269KB

.rsrc
Size: 8KB - Virtual size: 7KB