1d8c57cb4103be45549b6c48aa4ea55b3baac28a0033d681d7842efce4a28cf3

Sharing

Copy URL

Twitter E-mail

General

Target

1d8c57cb4103be45549b6c48aa4ea55b3baac28a0033d681d7842efce4a28cf3
Size

890KB
MD5

edeb5dea8ad10ae0102a5888991036b9
SHA1

8ba3ed9ab88b8fd8c77ede0f304deeec8cef843d
SHA256

1d8c57cb4103be45549b6c48aa4ea55b3baac28a0033d681d7842efce4a28cf3
SHA512

7bc2c3ffa882abf8b45cdd4df0677aee2495c453b3fcfc486a5321ff14b62cce35566efce579f5773164cdc55d39e9e97fa57833b337d1e7def888d13838cecd
SSDEEP

12288:3GjEJ5DY3YJW1QNCfFKVIm3vLZabIIsOihKlz3wp0dN2ZENtLfiIPDtOkYl9a:xn9HI8Ebdihs3K0HPN57PxOM

Score

N/A

Malware Config

Signatures

Files

1d8c57cb4103be45549b6c48aa4ea55b3baac28a0033d681d7842efce4a28cf3
.exe windows x86

f1c5135543ee8cac560755146b60af00

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Add
ImageList_Destroy
CreatePropertySheetPageW
ImageList_Create
InitCommonControlsEx

kernel32

SetErrorMode
GetEnvironmentStringsW
FreeEnvironmentStringsA
TerminateProcess
WideCharToMultiByte
WriteConsoleW
VirtualAlloc
GetStdHandle
HeapDestroy
GetVersion
GetEnvironmentStrings
GetModuleHandleA
GetConsoleMode
GetCurrentProcess
GetStringTypeW
ExitProcess
OutputDebugStringW
GetCommandLineA
LCMapStringW
VirtualFree
GetModuleFileNameA
GetStringTypeA
GetStartupInfoA
UnhandledExceptionFilter
GetFileType
GetCommandLineW
FreeEnvironmentStringsW
MulDiv

gdi32

SetBkColor
CreateCompatibleDC
SelectObject
GetObjectW
DeleteObject
DeleteDC
CreateSolidBrush
GetTextExtentPoint32W
CreateFontIndirectW
BitBlt
GetDeviceCaps
GetStockObject
SetTextColor

advapi32

RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW

user32

MessageBoxA
SendDlgItemMessageW
SetWindowTextA
IsWindow
SetWindowTextW
GetParent
SetCursor
GetDlgItem
RegisterClassExA
SetFocus
GetClientRect
PeekMessageW
LoadStringA
DestroyIcon
ReleaseDC
LoadIconA
GetDC
ShowWindow
EndPaint
UnregisterClassA
GetWindowRect
KillTimer
SetForegroundWindow
LoadCursorA
SetTimer

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 872KB - Virtual size: 872KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1c5135543ee8cac560755146b60af00

Headers

File Characteristics

Imports

comctl32

kernel32

gdi32

advapi32

user32

Sections

.text Size: 11KB - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 2KB

.tls Size: 512B - Virtual size: 36B

.rsrc Size: 872KB - Virtual size: 872KB

.text
Size: 11KB - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 2KB

.tls
Size: 512B - Virtual size: 36B

.rsrc
Size: 872KB - Virtual size: 872KB