c2deff6218be4bb0352583511a17a52e715016b921a56f3f0166ff09d0b0e72e

Sharing

Copy URL

Twitter E-mail

General

Target

c2deff6218be4bb0352583511a17a52e715016b921a56f3f0166ff09d0b0e72e
Size

267KB
MD5

4d39aeaf7e88ebd9c25b886db71cc776
SHA1

1c2aa785a49f4ec5fc0df68fce47d1e43140b59f
SHA256

c2deff6218be4bb0352583511a17a52e715016b921a56f3f0166ff09d0b0e72e
SHA512

c2a498167f2aca5edf18a3eb29690e32c28cfd8d564ae28272b44ac9acaaa72b07967c5c3926efb7a7920a4f208382d39a1950e67daa6bfcbf63d8e6d5ea7ae6
SSDEEP

3072:D22DPzPAzp6f9PboTde136OjAS7Vglkq+yUzsKOUqE617AYUJvAOVuRLa3Cmfj6+:a2bESbKM6J4ilsyZiq1sAOVu4NHwjH7o

Score

N/A

Malware Config

Signatures

Files

c2deff6218be4bb0352583511a17a52e715016b921a56f3f0166ff09d0b0e72e
.exe windows x86

b560e5e5f3594ae533da6842b5e02855

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassExA
LoadIconA
DispatchMessageA
TranslateMessage
GetMessageA
LoadAcceleratorsA
UpdateWindow
ShowWindow
CreateWindowExA
PostQuitMessage
DialogBoxParamA
DestroyWindow
DefWindowProcA
LoadCursorA

ole32

SNB_UserSize
WriteClassStm
StgSetTimes
STGMEDIUM_UserSize
ReadClassStg
StringFromGUID2
StgOpenStorage
ProgIDFromCLSID
RegisterDragDrop
OleInitialize
OleCreateStaticFromData
StgCreatePropStg
OleSetContainedObject
StgIsStorageFile
OleDraw
OleMetafilePictFromIconAndLabel
StgGetIFillLockBytesOnFile
ReadFmtUserTypeStg
STGMEDIUM_UserUnmarshal
OleFlushClipboard
STGMEDIUM_UserMarshal
OleDuplicateData
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
StgCreateStorageEx
StgCreateDocfile
OleLoadFromStream
OleSetMenuDescriptor
OleGetClipboard
OleSetClipboard
OleQueryLinkFromData
OleGetIconOfFile
OleRegEnumVerbs
WriteFmtUserTypeStg
SNB_UserMarshal
PropStgNameToFmtId
PropVariantClear
SetConvertStg
OleRun
OleGetAutoConvert
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
SNB_UserFree
StgOpenStorageEx
OleSaveToStream
StringFromCLSID
OleTranslateAccelerator
SNB_UserUnmarshal
OleLoad
ReadClassStm
OleGetIconOfClass
OleLockRunning
OleSave
ReleaseStgMedium
StgOpenAsyncDocfileOnIFillLockBytes
PropVariantCopy
OleSetAutoConvert
OleRegEnumFormatEtc
OleIsCurrentClipboard
STGMEDIUM_UserFree

oleaut32

VarBoolFromCy
SafeArrayGetLBound
LHashValOfNameSys
SysReAllocStringLen
SafeArrayRedim
VarBstrCat
RegisterTypeLi
OleIconToCursor
ClearCustData
SafeArrayCopy
RegisterActiveObject
SafeArrayCreateVector
VARIANT_UserFree
CreateErrorInfo
CreateTypeLi
OleCreateFontIndirect
SysAllocString
BSTR_UserMarshal
VarBoolFromR8
SysStringByteLen
OleLoadPictureFileEx
GetRecordInfoFromTypeInfo
QueryPathOfRegTypeLi
SafeArrayPtrOfIndex
SafeArrayDestroyDescriptor
OleCreatePropertyFrame
BSTR_UserSize
GetRecordInfoFromGuids
VarBoolFromUI2
VarBoolFromI1
DispCallFunc
LoadTypeLi
SystemTimeToVariantTime
VarBoolFromUI4
SafeArraySetIID
SysStringLen
OleLoadPicture
OleLoadPictureEx
RevokeActiveObject
SafeArrayUnlock
LHashValOfNameSysA
DispGetIDsOfNames
SafeArrayAccessData
VarBoolFromDec
UnRegisterTypeLi
VarAdd
LPSAFEARRAY_UserUnmarshal
SafeArrayGetElemsize
VarBoolFromDate
SafeArraySetRecordInfo
VARIANT_UserSize
VarBstrFromDisp
SysFreeString
BstrFromVector
SafeArrayAllocDescriptorEx
CreateStdDispatch
OleLoadPicturePath
VARIANT_UserMarshal
SafeArrayGetElement
SafeArrayCreate
OaBuildVersion
LoadRegTypeLi
GetActiveObject
SafeArrayDestroyData
SafeArrayLock
SafeArrayDestroy
VarBstrFromBool
VarBoolFromI4
VarBoolFromDisp
SafeArrayUnaccessData
SafeArrayAllocData
SafeArrayCreateEx
SysReAllocString
VARIANT_UserUnmarshal
VarBoolFromUI1
OleCreatePictureIndirect
SysAllocStringByteLen
SafeArrayGetRecordInfo
DispGetParam
SetErrorInfo
SafeArrayGetDim
VarBstrFromDec
BSTR_UserUnmarshal
CreateDispTypeInfo
VarBstrFromI1

oleacc

AccessibleObjectFromEvent
CreateStdAccessibleObject
AccessibleChildren
LresultFromObject
GetRoleTextW
GetStateTextW
AccessibleObjectFromPoint
GetRoleTextA
WindowFromAccessibleObject

kernel32

GetStartupInfoA
GetModuleHandleA
SetErrorMode
lstrlenA
ExitProcess
HeapCreate

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
_except_handler3
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
_controlfp
__dllonexit
_onexit
__setusermatherr

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b560e5e5f3594ae533da6842b5e02855

Headers

File Characteristics

Imports

user32

ole32

oleaut32

oleacc

kernel32

msvcrt

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 285KB

.rsrc Size: 116KB - Virtual size: 113KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 285KB

.rsrc
Size: 116KB - Virtual size: 113KB