65187fa637db9743859a37490f72f0df64b8b9117753781cad9a6f36cda44718

Sharing

Copy URL Twitter E-mail

General

Target

65187fa637db9743859a37490f72f0df64b8b9117753781cad9a6f36cda44718
Size

108KB
MD5

44b5f6df543ea931892668437ae3e04b
SHA1

4495efbc5f76b761ad88d9b5e5d39ada1a8b8d05
SHA256

65187fa637db9743859a37490f72f0df64b8b9117753781cad9a6f36cda44718
SHA512

bc9494e8e2d891e8da8242c9889e5c6126bbf6a0da89306991d44d004917660d8a9b3041575ce21c39231f61a1ff0b1385dcc97331bc7cfa8401a65fd5040b72
SSDEEP

1536:rNxokms4HWIM4KIPepaO/nXbumbqbm7ObduAtZFdJriSHuHsA:DxJFGPeH/rumbq6GuA3O3

Score

N/A

Malware Config

Signatures

Files

65187fa637db9743859a37490f72f0df64b8b9117753781cad9a6f36cda44718
.exe windows x86

fea905e10e85e419f8d6e34714a0aac6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strchr
__dllonexit
fprintf
strncpy
_XcptFilter
__p___initenv
calloc
fclose
__p__fmode
_iob
_except_handler3
__set_app_type
malloc
strrchr
sinh
_vsnprintf
fputs
__setusermatherr
_controlfp
_errno
_adjust_fdiv
__p__commode
__getmainargs
free
_initterm
_exit

comdlg32

GetOpenFileNameA

kernel32

GetLocaleInfoW
GetFileAttributesW
GetNumberFormatA
GetStringTypeA
GetACP
IsBadReadPtr
GetCurrentThreadId
lstrcmpiW
CompareStringA
lstrlenA
SetFileTime
SetErrorMode

user32

OemToCharA
DestroyMenu
DrawTextA
SetCursor
GetActiveWindow
IntersectRect
WinHelpA
GetScrollRange
SetDlgItemTextA
ReleaseCapture
GetForegroundWindow
TrackPopupMenu
EnableWindow

ole32

GetRunningObjectTable
OleSetClipboard
RegisterDragDrop
CreateBindCtx
OleGetClipboard
StringFromCLSID
CoTaskMemRealloc
CoUninitialize
CoDisconnectObject
CoGetClassObject
CoReleaseMarshalData
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoTaskMemAlloc

advapi32

SetSecurityDescriptorDacl
FreeSid
RegDeleteValueA
RegEnumKeyA
CryptReleaseContext
ControlService
RegOpenKeyExW
AddAccessAllowedAce
LookupPrivilegeValueA
RegOpenKeyExA
RegOpenKeyW
OpenSCManagerA
RegEnumKeyW

gdi32

FrameRgn
Chord
CreateEllipticRgn
SetAbortProc
SetBkMode
CreateFontIndirectA
EnumMetaFile

comctl32

ImageList_DragLeave
ImageList_Add
ImageList_Write
ImageList_BeginDrag
ImageList_SetOverlayImage
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
ImageList_GetImageCount
InitCommonControls
CreatePropertySheetPageW
ImageList_SetImageCount
ImageList_LoadImageA
ImageList_Read
ImageList_GetImageInfo
InitializeFlatSB

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fea905e10e85e419f8d6e34714a0aac6

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

advapi32

gdi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 35KB

.rsrc Size: 29KB - Virtual size: 29KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 35KB

.rsrc
Size: 29KB - Virtual size: 29KB