6dae39aad3dccd069f485169622d75913a7345e8b5d72e39b4c07e68db9e9a6f

Sharing

Copy URL Twitter E-mail

General

Target

6dae39aad3dccd069f485169622d75913a7345e8b5d72e39b4c07e68db9e9a6f
Size

107KB
MD5

5aa9fd234092f59160f971db98e49a7c
SHA1

61a5030b690af369e9e6f8f1faed163543e1a4b7
SHA256

6dae39aad3dccd069f485169622d75913a7345e8b5d72e39b4c07e68db9e9a6f
SHA512

597f42b4fd21246ba55e81be4066d05cf2129495318f665dac72a669037e4f1aefdf7d82e263354c8648e836b9a62bc4e63ebecbb8e85fa053b5af001e59e1f8
SSDEEP

3072:2CrKguFLfoLYA+vIDT3jVR0RPutsPPm0U:2CSFD0p+vIPz3/C+7

Score

N/A

Malware Config

Signatures

Files

6dae39aad3dccd069f485169622d75913a7345e8b5d72e39b4c07e68db9e9a6f
.exe windows x86

66bff53bb7bf09324cc59a572f4bdab4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_XcptFilter
__setusermatherr
sinh
_snprintf
_controlfp
__set_app_type
fflush
fputc
_initterm
_setmode
memcpy
_adjust_fdiv
__p__commode
__p__fmode
calloc
fprintf
__dllonexit
_stricmp
__p___initenv
_exit
__getmainargs
_except_handler3
strncmp
free
atoi
strncpy
_onexit

comdlg32

GetOpenFileNameA

kernel32

GetNumberFormatA
WriteConsoleA
InterlockedCompareExchange
GlobalFree
lstrlenA
CompareStringW
GetCurrentThreadId
GetLocaleInfoW
GetSystemInfo
SetCurrentDirectoryA
GetEnvironmentVariableA
CreateFileMappingA
GetExitCodeProcess
GetConsoleMode
GetCurrentProcessId

user32

IsChild
DrawIcon
ScrollWindow
KillTimer
IntersectRect
WindowFromPoint
SetDlgItemTextA
UnregisterClassA
GetCursorPos
GetActiveWindow
TranslateMessage
SetWindowTextA
TrackPopupMenu

ole32

RegisterDragDrop
CreateBindCtx
CoUninitialize
CreateILockBytesOnHGlobal
CoRevokeClassObject
StringFromIID
CoDisconnectObject
StringFromGUID2
GetRunningObjectTable
CoCreateGuid
DoDragDrop
StringFromCLSID
IsEqualGUID
CoSetProxyBlanket

comctl32

ImageList_GetImageCount
ImageList_GetBkColor
ImageList_LoadImageA
ImageList_BeginDrag
CreateStatusWindowA
CreateToolbarEx
ImageList_Read
InitCommonControls
ImageList_GetImageInfo
PropertySheetA
PropertySheetW
ImageList_DrawEx
ImageList_Draw
ImageList_DragShowNolock
ImageList_Remove

advapi32

EqualSid
FreeSid
AdjustTokenPrivileges
InitializeAcl
QueryServiceStatus
RegEnumKeyExA
AddAccessAllowedAce
RegCreateKeyA
CryptHashData
RegEnumValueA
RegCreateKeyExA
RegOpenKeyExA
IsValidSid
OpenServiceW
SetSecurityDescriptorGroup

gdi32

RestoreDC
TextOutW
GetMapMode
SelectPalette
GetMetaFileBitsEx
DeleteObject
SetStretchBltMode
Ellipse

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66bff53bb7bf09324cc59a572f4bdab4

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

comctl32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 29KB - Virtual size: 28KB