961129e93e5a49c16bf2f7e48e7730fa3bc1436d5a45d7b6dc044edf1b2edac3

Sharing

Copy URL

Twitter E-mail

General

Target

961129e93e5a49c16bf2f7e48e7730fa3bc1436d5a45d7b6dc044edf1b2edac3
Size

110KB
MD5

00ebf984a9d8d0437b32178da318928d
SHA1

4d14710e7b93cc6adeacab91c8d015206a501924
SHA256

961129e93e5a49c16bf2f7e48e7730fa3bc1436d5a45d7b6dc044edf1b2edac3
SHA512

88f44dad38ed85ee3c018b795220e395f2bfea9e33624b48a045a98e972300909cfd1e437d8bb7d0a6ff3c4003275dd9d4cf2c4f4d35735e0ceb49bedd2c1b97
SSDEEP

3072:xXvGFqA7QeGpVQ/0GpCFoPa1ypZr4eQJu6nBGR:xXv5MwCPCQouiBo

Score

N/A

Malware Config

Signatures

Files

961129e93e5a49c16bf2f7e48e7730fa3bc1436d5a45d7b6dc044edf1b2edac3
.exe windows x86

6460eb8af52c1ce78fe0a7bae3b9a089

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__setusermatherr
fputc
sprintf
_XcptFilter
_adjust_fdiv
free
_exit
memmove
_controlfp
_errno
_write
__getmainargs
_except_handler3
strrchr
__p___initenv
__set_app_type
__p__commode
_initterm
__dllonexit
__p__fmode
sqrt
calloc

comdlg32

GetOpenFileNameA

kernel32

lstrlenA
InterlockedExchange
IsBadCodePtr
OutputDebugStringA
GetModuleFileNameA
GetCommandLineW
WideCharToMultiByte
IsBadWritePtr
GetSystemTime
lstrcatA
GetNumberFormatA
CopyFileA
GetTimeZoneInformation
SetEnvironmentVariableA
GetShortPathNameA
VirtualProtectEx
GetDiskFreeSpaceA
lstrcmpiW

user32

GetMessageA
WindowFromPoint
GetWindowRect
SendDlgItemMessageA
DestroyCursor
GetSystemMenu
CreateWindowExA
IsWindowVisible
IsWindow
GetWindowLongA
SetScrollPos
LoadIconA
GetWindowPlacement
SetDlgItemTextA

comctl32

ImageList_Add
ImageList_AddMasked
InitCommonControls
ImageList_Destroy
CreateToolbarEx
DestroyPropertySheetPage
ImageList_Create
ImageList_GetIcon
CreatePropertySheetPageA
ImageList_DragShowNolock
PropertySheetW

ole32

OleIsCurrentClipboard
CoReleaseMarshalData
StringFromGUID2
RevokeDragDrop
CoCreateInstance
ProgIDFromCLSID
CoTaskMemRealloc
StgCreateDocfileOnILockBytes
CoTaskMemAlloc
OleRun
GetRunningObjectTable

advapi32

RegEnumValueA
QueryServiceStatus
RegSetValueExW
ControlService
GetTokenInformation
InitializeAcl
DeregisterEventSource
OpenThreadToken
FreeSid
GetLengthSid
RegQueryInfoKeyA
RegDeleteKeyA

gdi32

CloseEnhMetaFile
LineDDA
ExtTextOutA
GetTextAlign
GetTextExtentExPointW
EndPage
GetObjectType
DPtoLP
GetTextFaceA
SelectPalette
CreateBrushIndirect
CreateFontA
SelectClipPath
EnumFontsA
StartDocA
StrokeAndFillPath
Arc
EnumFontFamiliesExW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6460eb8af52c1ce78fe0a7bae3b9a089

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

ole32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 21KB - Virtual size: 20KB