25c3239d47fef1a3aa05bbe7480ed2e5cfe39fec0e2c3e700f9f643a2a3ed14c

Sharing

Copy URL Twitter E-mail

General

Target

25c3239d47fef1a3aa05bbe7480ed2e5cfe39fec0e2c3e700f9f643a2a3ed14c
Size

105KB
MD5

4e7b26b1788d0b938d579d8203829ca0
SHA1

a2a7122d51b317b94420928b01bad29ff727f0b3
SHA256

25c3239d47fef1a3aa05bbe7480ed2e5cfe39fec0e2c3e700f9f643a2a3ed14c
SHA512

26afc39151b9c515b2672338ff5987e5947d837cf6756cf32e6cb17fc870a78fab8ca7e502cd3f385049a4531888afdc7b2657191d6f201ade324af4f8b1012e
SSDEEP

3072:DcqWjGbBhl0G3ZAWxXyQX7u4dKlHX2kY5a6:DcsB30G3ZhJ7u4eX2J5H

Score

N/A

Malware Config

Signatures

Files

25c3239d47fef1a3aa05bbe7480ed2e5cfe39fec0e2c3e700f9f643a2a3ed14c
.exe windows x86

2d18df7d2b930c5cb04e137fcb4cdfbc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcmp
_adjust_fdiv
exit
__getmainargs
malloc
_acmdln
printf
_XcptFilter
strrchr
_snprintf
__setusermatherr
calloc
_except_handler3
_vsnprintf
_exit
getenv
_initterm
__set_app_type
sinh
free
fclose
realloc
__p__commode
__p__fmode

kernel32

CreateEventA
CreateProcessA
SetUnhandledExceptionFilter
GlobalUnlock
GetProfileIntA
GetProfileStringA
GetLocalTime
GetDiskFreeSpaceA
SetEvent
LCMapStringW
GetStartupInfoA
GetCurrentThread
MultiByteToWideChar
LCMapStringA
GlobalLock
DuplicateHandle
GetLastError

ole32

OleSetMenuDescriptor
StgCreateDocfileOnILockBytes
OleUninitialize
CreateItemMoniker
CoSetProxyBlanket
CoGetMalloc
CoInitializeSecurity
OleRun
RevokeDragDrop

gdi32

GetBitmapBits
GetMapMode
ExtCreatePen
StrokePath
CreateEllipticRgn
CreateRectRgn
GetEnhMetaFilePaletteEntries
CreateHalftonePalette
CreatePatternBrush
GetDIBColorTable
CreateMetaFileW
OffsetViewportOrgEx
ExtTextOutW
CreateDIBSection
SetColorAdjustment

comctl32

ImageList_Write
ImageList_EndDrag
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_Draw
ImageList_Remove
CreatePropertySheetPageW
ImageList_Create
PropertySheetW
ImageList_DragLeave
ImageList_AddMasked

user32

SetWindowPlacement
DestroyMenu
LoadIconA
DestroyCursor
IsWindowEnabled
GetDesktopWindow
LoadBitmapA
TranslateMessage
MessageBoxA

oleaut32

SafeArrayCreate
SafeArrayGetUBound
VariantClear
SysReAllocStringLen
SetErrorInfo
SysAllocStringLen
SysAllocStringByteLen
SafeArrayRedim
VariantCopy
SysFreeString
VariantInit
SafeArrayPutElement

shell32

FindExecutableW
ShellExecuteExA
SHFileOperationA
ExtractIconExW
SHGetSpecialFolderLocation
SHAppBarMessage
SHGetMalloc
SHCreateDirectoryExA
SHGetSpecialFolderPathW
SHChangeNotify
SHGetSettings
ShellExecuteEx
SHGetDesktopFolder

advapi32

OpenServiceA
DeregisterEventSource
RegSetValueExA
RegEnumKeyA
RegCloseKey
OpenSCManagerW

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d18df7d2b930c5cb04e137fcb4cdfbc

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

gdi32

comctl32

user32

oleaut32

shell32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 25KB - Virtual size: 25KB