ab24a6da8694be2414113e66c33303f6fb897d3b9727cfb4bfc467f694700619

Sharing

Copy URL Twitter E-mail

General

Target

ab24a6da8694be2414113e66c33303f6fb897d3b9727cfb4bfc467f694700619
Size

80KB
MD5

f3c387b601d3d927ff0624d877185a35
SHA1

dd28a34fefba64a8b66051bd919067bebf0f2919
SHA256

ab24a6da8694be2414113e66c33303f6fb897d3b9727cfb4bfc467f694700619
SHA512

034fc1830b2fbaf003af518b921ac2389710c6ced73540c5c1a2e1753b4f7374b854ebcf1a05f1252a0891de97fa7aec05a3c0679892cbeb854749fa6dc1af2b
SSDEEP

1536:hvCmldNJDNW3xemsTso5MlOWZkQu2CDQQb4PTEGmLIiRJdh2ceIczIuh:hvCmldDNW3x9sTFKI2CDuPmLIiRFDeIW

Score

N/A

Malware Config

Signatures

Files

ab24a6da8694be2414113e66c33303f6fb897d3b9727cfb4bfc467f694700619
.exe windows x86

75b5c9b72f387a7c82b400f7be4b1c48

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
fputs
calloc
sqrt
__p__fmode
fopen
_except_handler3
free
__set_app_type
_strnicmp
strrchr
__setusermatherr
strchr
__dllonexit
_stricmp
memset
strncpy
_exit
_XcptFilter
__getmainargs
__p__environ
_iob
fputc
_onexit
__p__commode
_adjust_fdiv
exit
_acmdln

kernel32

GetEnvironmentStringsW
GlobalFree
MultiByteToWideChar
LocalAlloc
GetModuleHandleW
GetDateFormatA
GetStartupInfoA
LocalFree
WriteFile
CreateProcessA
ReadFile
FreeLibrary

ole32

OleInitialize
OleDraw
CoInitializeEx
OleRun
OleSetMenuDescriptor
DoDragDrop
CoUninitialize
CoLoadLibrary
ProgIDFromCLSID
IIDFromString
PropVariantClear

oleaut32

VariantCopyInd
SysStringLen
SafeArrayGetUBound
SysReAllocStringLen
SysStringByteLen
VariantClear
SafeArrayUnaccessData
LoadTypeLib
SysAllocStringByteLen
SysFreeString
SysAllocStringLen

gdi32

FillRgn
GetROP2
FillPath
InvertRgn
CreateDCA
EndDoc
EnumFontsA
LineDDA
SetRectRgn
DeleteObject
PtVisible
CreateICW

comctl32

ImageList_DragLeave
ImageList_Add
ImageList_SetIconSize
ImageList_Destroy
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_BeginDrag
ImageList_SetBkColor
ImageList_AddMasked
ImageList_ReplaceIcon

user32

DrawIcon
TrackPopupMenu
GetDesktopWindow
ReleaseDC
SetWindowPlacement
LoadStringA
GetMenuItemCount
SetRect
WindowFromPoint
TranslateMessage

advapi32

RegQueryValueExW
LookupPrivilegeValueW
RegQueryInfoKeyA
CryptReleaseContext
AllocateAndInitializeSid
CopySid
OpenServiceW
RegCreateKeyExW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75b5c9b72f387a7c82b400f7be4b1c48

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

oleaut32

gdi32

comctl32

user32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 19KB - Virtual size: 18KB

.data Size: 55KB - Virtual size: 54KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 19KB - Virtual size: 18KB

.data
Size: 55KB - Virtual size: 54KB

.rsrc
Size: 3KB - Virtual size: 2KB