761f2761b13312479bbe55855200d198204809453c3c6f1f4a3fcacbe1807672

General

Target

761f2761b13312479bbe55855200d198204809453c3c6f1f4a3fcacbe1807672
Size

18KB
MD5

224300bf1512d9d4467bfae06c8ebd91
SHA1

deb39c1beceba960b83b6e955fa67ea3cdc6bd8d
SHA256

761f2761b13312479bbe55855200d198204809453c3c6f1f4a3fcacbe1807672
SHA512

a9dfc7eab335a06599986aea6637c483123fa4b1d27ba3c5e911da342822ae2d691535274636db71be7caf1c177f4629695cbda9a3ea4a906ddb83ed8d601577
SSDEEP

384:/uY/RyH73abhYSWzUxfVug8ubZX2QUbGfLZ0E7OGDc1PMw:/Z/RusDWzOfVu/uNBfLZ0kkPMw

Score

N/A

Malware Config

Signatures

Files

761f2761b13312479bbe55855200d198204809453c3c6f1f4a3fcacbe1807672
.exe windows x86

56157c5908857006a42bb3a963272c0b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIW
PathStripToRootW
StrCpyW
StrToIntExW
wnsprintfA
StrCmpNIA
StrDupW
StrCmpIW
StrRetToBufW
StrStrIA
PathRemoveExtensionW
StrCatBuffW

msvcrt

rand
time
_chsize
__p__osver
wcscat
towupper
_access
_strlwr
_stat
_finite
ctime
srand
__p__commode
toupper
__set_app_type
__p__fmode
_CxxThrowException
__getmainargs
wcscpy
__p__iob
__setusermatherr

ole32

OleRegGetMiscStatus
ProgIDFromCLSID
CoGetMalloc
CoReleaseMarshalData
GetHGlobalFromStream
StgOpenStorage
StgCreateDocfile
CoCreateGuid
CoMarshalInterface
CoRevertToSelf
MkParseDisplayName

kernel32

LoadResource
GetLastError
GetCurrentThreadId
VirtualAlloc
FormatMessageA
CreateDirectoryA
ExitProcess
GetWindowsDirectoryW
FindFirstFileW
GetUserDefaultLCID
GetCurrentProcessId
GetModuleHandleW
LocalFree
GetStdHandle

user32

TranslateMessage
GetForegroundWindow
RegisterClassW
SetCursor
CheckRadioButton
GetMessagePos
DispatchMessageA
ExitWindowsEx
GetSysColorBrush
CreatePopupMenu
CharPrevW
EnumChildWindows
SendMessageA

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 491B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56157c5908857006a42bb3a963272c0b

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

msvcrt

ole32

kernel32

user32

Sections

.text Size: 5KB - Virtual size: 5KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 3KB - Virtual size: 18KB

.reloc Size: 512B - Virtual size: 491B

.text
Size: 5KB - Virtual size: 5KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 3KB - Virtual size: 18KB

.reloc
Size: 512B - Virtual size: 491B