5aa3f4db1d76ea81778a1453b7d846e83ffb07d162edaa7d1d75445f25a3dcdf

Sharing

Copy URL

Twitter E-mail

General

Target

5aa3f4db1d76ea81778a1453b7d846e83ffb07d162edaa7d1d75445f25a3dcdf
Size

146KB
MD5

52228b63f029efd72d7c295c48c4e250
SHA1

37fc8d82716921a5a984ff79b5aa8fb5a39d2da3
SHA256

5aa3f4db1d76ea81778a1453b7d846e83ffb07d162edaa7d1d75445f25a3dcdf
SHA512

b5e7ce1cc8602f6ea49afdaa61e2d537989fed68963f262c3b1c146725e27ef2c9cc54524c0810b00c89b4389562c4d7b0446d203def95eb4f52a4997437893e
SSDEEP

3072:29eIBTg/6ZWBBe05Mb2ZwtxXCie6PXv/Cld57:GZZWw2AAi1PfKR

Score

N/A

Malware Config

Signatures

Files

5aa3f4db1d76ea81778a1453b7d846e83ffb07d162edaa7d1d75445f25a3dcdf
.exe windows x86

adbbafc7ea447ec7d390c2bd678a8abe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetUserDefaultLangID
GetStartupInfoA
GetModuleHandleA
MoveFileA
GetStringTypeW
GetVersion
GetLocaleInfoA
IsBadReadPtr
GetStdHandle
VirtualProtect
GetSystemDirectoryW

msvcrt

_initterm
_getch
exit
_setjmp
__lc_codepage
realloc
log
__set_app_type
__getmainargs
gmtime
longjmp
_acmdln
_except_handler3
_vsnprintf
fseek
__p__commode
_adjust_fdiv
__setusermatherr
__p__fmode
_XcptFilter

user32

GetCursorPos
GetSystemMenu
GetSysColorBrush
UnregisterClassA
RegisterClassA
OffsetRect
FindWindowA
GetIconInfo
SetFocus

gdi32

PlayMetaFileRecord
CloseEnhMetaFile
GetTextMetricsA
PolylineTo
GetEnhMetaFileDescriptionA
EnumEnhMetaFile
StartDocA
CreateFontIndirectA
CreatePenIndirect

comctl32

ImageList_SetBkColor
CreatePropertySheetPageA
ImageList_GetIcon
ImageList_DrawEx
ImageList_SetIconSize
PropertySheetW
InitCommonControls

version

VerFindFileW
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA

ole32

OleInitialize
OleRun
CoRegisterMessageFilter
CreateBindCtx
IIDFromString
CoDisconnectObject
CLSIDFromProgID
CreateItemMoniker
OleSetClipboard
IsAccelerator

shell32

ExtractIconExA
DoEnvironmentSubstW
SHGetSpecialFolderPathW
SHFileOperationW
DragAcceptFiles
SHBrowseForFolder
ExtractIconExW

advapi32

SetSecurityDescriptorDacl
RegEnumKeyExW
RegSetValueExW
RegQueryValueExA
RegCreateKeyExA
IsValidSid

oleaut32

SafeArrayGetUBound
SetErrorInfo
SafeArrayGetElement
SysAllocStringByteLen
SafeArrayRedim
SysStringLen
SafeArrayPtrOfIndex
GetActiveObject
SafeArrayCreate
VariantClear
VariantCopyInd

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

adbbafc7ea447ec7d390c2bd678a8abe

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

comctl32

version

ole32

shell32

advapi32

oleaut32

Sections

.text Size: 65KB - Virtual size: 64KB

.data Size: 48KB - Virtual size: 47KB

.rsrc Size: 32KB - Virtual size: 104KB

.text
Size: 65KB - Virtual size: 64KB

.data
Size: 48KB - Virtual size: 47KB

.rsrc
Size: 32KB - Virtual size: 104KB