91fab4bdda31c1177a4c205c7c18419caa3bd4a58fbc8ff8f2e70ef3fec968f1

Sharing

Copy URL Twitter E-mail

General

Target

91fab4bdda31c1177a4c205c7c18419caa3bd4a58fbc8ff8f2e70ef3fec968f1
Size

515KB
MD5

d0e853bf1f0991968d985b6e85b6aa55
SHA1

b2e402278ede4f344d908070f29774ffde993287
SHA256

91fab4bdda31c1177a4c205c7c18419caa3bd4a58fbc8ff8f2e70ef3fec968f1
SHA512

7b07ea9252d72a089830a623a4d4b524adfee037bad26724daf8f2b812eac6cc6f31e3168c452ccf681396fca69ba8d786c5be5e4810f4ec712c6592cd21db27
SSDEEP

12288:m9yIlWHnwf8SHugwSgmeTGwjYHNkQUQni0T6OAnsLh3z7:m9yIlWHnwfT7gmeTHe7332W3

Score

N/A

Malware Config

Signatures

Files

91fab4bdda31c1177a4c205c7c18419caa3bd4a58fbc8ff8f2e70ef3fec968f1
.exe windows x86

cfc3a1263b0093092ce7f18fb21e08ba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Merge
CreatePropertySheetPageW
ImageList_Replace
GetEffectiveClientRect
InitCommonControlsEx

comdlg32

FindTextW

user32

CharLowerW
MessageBoxA
ChildWindowFromPointEx
GetComboBoxInfo
ShowWindow
CreateWindowExA
DestroyWindow
LoadIconA
RegisterClassA
OpenDesktopW
RegisterClassExA
DefWindowProcA

shell32

SHGetFileInfoA
RealShellExecuteW
SHBrowseForFolderW

kernel32

GetStringTypeW
GetACP
VirtualFree
WideCharToMultiByte
GetProcAddress
GetModuleHandleA
InterlockedExchange
InterlockedIncrement
IsBadWritePtr
GetSystemTimeAsFileTime
GetPrivateProfileSectionNamesW
EnterCriticalSection
GetModuleFileNameA
WriteFile
GetCurrentProcess
LCMapStringA
GetSystemTime
VirtualAlloc
ReadConsoleA
SetStdHandle
ReadFile
LeaveCriticalSection
GetTickCount
lstrlenW
FlushFileBuffers
GetVersion
GetLastError
GetStdHandle
GetCurrentThreadId
GetStringTypeA
LCMapStringW
HeapCreate
UnhandledExceptionFilter
ExitProcess
CloseHandle
FindClose
FormatMessageW
TerminateProcess
LoadLibraryA
GetTimeZoneInformation
SetLastError
MultiByteToWideChar
DeleteCriticalSection
TlsSetValue
InterlockedDecrement
GetCurrentThread
FreeEnvironmentStringsW
GetOEMCP
DeleteFileW
VirtualQuery
HeapReAlloc
FreeEnvironmentStringsA
SetHandleCount
GetCPInfo
TlsAlloc
TlsGetValue
HeapFree
QueryPerformanceCounter
HeapDestroy
GetStartupInfoA
SetEnvironmentVariableA
GetFileType
RtlUnwind
CompareStringW
SetConsoleTitleW
GetEnvironmentStrings
CompareStringA
GetLocalTime
CreatePipe
GetCurrentProcessId
HeapAlloc
CreateMutexA
GetCommandLineA
InitializeCriticalSection
SetFilePointer
TlsFree
GetEnvironmentStringsW
SetConsoleOutputCP
OpenMutexA

Sections

.text
Size: 137KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfc3a1263b0093092ce7f18fb21e08ba

Headers

File Characteristics

Imports

comctl32

comdlg32

user32

shell32

kernel32

Sections

.text Size: 137KB - Virtual size: 136KB

.rdata Size: 248KB - Virtual size: 266KB

.data Size: 116KB - Virtual size: 115KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 137KB - Virtual size: 136KB

.rdata
Size: 248KB - Virtual size: 266KB

.data
Size: 116KB - Virtual size: 115KB

.rsrc
Size: 13KB - Virtual size: 12KB