c05ac1b0b1db9d36bbac6eae614e14e3942b1d224274a33cbfe645fc79d0ddfb

Sharing

Copy URL Twitter E-mail

General

Target

c05ac1b0b1db9d36bbac6eae614e14e3942b1d224274a33cbfe645fc79d0ddfb
Size

148KB
MD5

27577769a51cbe8fa3fa6ce180248106
SHA1

6d009c51d432bd563e6d1e65d190d4611f933ea6
SHA256

c05ac1b0b1db9d36bbac6eae614e14e3942b1d224274a33cbfe645fc79d0ddfb
SHA512

b35006ee6a0e5c1790f94c9d162a84e306feeddf550762869e315dd3f4d16de2fb885ef83e50a47c27deb73a9bf16ccf31e56300a6aa01d7761ef0459bb0ac6d
SSDEEP

3072:7HWredo9TEOai4p5VwKwg5mm0s8gn7oGfDooRnRLWWZsa:Ldo1EsCpjFnfDoo/r

Score

N/A

Malware Config

Signatures

Files

c05ac1b0b1db9d36bbac6eae614e14e3942b1d224274a33cbfe645fc79d0ddfb
.exe windows x86

b2068a193fb2c15125e133d77efb22f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDiskFreeSpaceA
GetFileAttributesA
GetModuleHandleA
VirtualProtect
GetStartupInfoA
GetACP
GetShortPathNameA
DuplicateHandle
GetSystemTime

msvcrt

_itoa
isxdigit
tolower
perror
_acmdln
__p__commode
__p__fmode
__getmainargs
iswdigit
__dllonexit
_pipe
wcsncmp
_except_handler3
__setusermatherr
__set_app_type
_XcptFilter
puts
exit
log
_initterm
_adjust_fdiv

user32

SetCursor
GetMenuItemID
EnableMenuItem
DispatchMessageA
GetCursorPos
GetWindowThreadProcessId
GetMessagePos
PtInRect

comctl32

InitializeFlatSB
ImageList_AddMasked
ImageList_SetIconSize
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_SetImageCount
ImageList_Write

gdi32

ExtEscape
FillRgn
SaveDC
CreateFontIndirectA
Arc
GetDIBits
CreatePolygonRgn
AbortDoc
GetTextExtentPointA
DeleteDC

shell32

ShellExecuteW
SHFileOperationW
DoEnvironmentSubstW
CommandLineToArgvW
DragQueryFileA
ExtractIconExA

version

GetFileVersionInfoA
VerQueryValueA
VerInstallFileW
GetFileVersionInfoSizeA
VerFindFileW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
VerLanguageNameA
VerInstallFileA

oleaut32

SafeArrayUnaccessData
LoadTypeLib
SafeArrayRedim
GetErrorInfo
SysFreeString
CreateErrorInfo

ole32

CLSIDFromString
StringFromIID
CoLoadLibrary
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
CoTaskMemFree
GetRunningObjectTable
DoDragDrop
CoTaskMemAlloc

advapi32

RevertToSelf
RegEnumKeyExW
RegSetValueExA
RegEnumKeyA
SetSecurityDescriptorOwner
GetTokenInformation
RegCreateKeyExA
CryptCreateHash

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 35KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b2068a193fb2c15125e133d77efb22f0

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

comctl32

gdi32

shell32

version

oleaut32

ole32

advapi32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 35KB - Virtual size: 104KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 35KB - Virtual size: 104KB