9bc36a70b9b9a35da8564adcf35a7d936b43e338cb5d1eac6ed32b804a8e7cbb

Sharing

Copy URL Twitter E-mail

General

Target

9bc36a70b9b9a35da8564adcf35a7d936b43e338cb5d1eac6ed32b804a8e7cbb
Size

135KB
MD5

d8b05b52c8e69acf8598ee1a1cacdbcd
SHA1

c6ccf626ed6dce34243363b8dda375e85938437d
SHA256

9bc36a70b9b9a35da8564adcf35a7d936b43e338cb5d1eac6ed32b804a8e7cbb
SHA512

56983961af3c6bced9e940c51ead1230103e1cf4eaf3f43a7719b43e716f1a5f44c597c12765529ab777ebb584e11ff99d1b91c9bb8a69e4d0f1efe968ac1d4c
SSDEEP

1536:hIWWZNwgnf/LYo6DcgAlu9YTnCSm2HV64Cl/f5TNYeq1XhBQyMHGQPTSqbbT4iiO:hSrYomSLV64ClpTyXblMHGQPTnAzKctu

Score

N/A

Malware Config

Signatures

Files

9bc36a70b9b9a35da8564adcf35a7d936b43e338cb5d1eac6ed32b804a8e7cbb
.exe windows x86

60479c0c0c41f2a688d133dbab1eee33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

WaitForSingleObject
GetThreadLocale
SetFilePointer
IsDBCSLeadByte
GlobalFree
DeleteFileW
FlushFileBuffers
CreateFileMappingA
GetModuleHandleA
VirtualProtect
GetStartupInfoA
GetUserDefaultLangID

msvcrt

ftell
_CIsqrt
_mbsicmp
_acmdln
_initterm
__setusermatherr
__p__commode
__p__fmode
_adjust_fdiv
strchr
__set_app_type
_wcsupr
_except_handler3
exit
_XcptFilter
log
_vsnwprintf
__getmainargs

user32

PtInRect
GetCursorPos
GetWindow
SetRect
IsDialogMessageA
ShowOwnedPopups

version

VerInstallFileA
VerInstallFileW
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
VerQueryValueA

ole32

CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoDisconnectObject
OleFlushClipboard
CoReleaseMarshalData
CoTaskMemFree
CoGetClassObject
CoGetInterfaceAndReleaseStream

shell32

CommandLineToArgvW
SHGetSpecialFolderPathW
ShellExecuteW
SHCreateDirectoryExW
SHGetPathFromIDListA
ShellExecuteA
SHGetPathFromIDListW
SHAddToRecentDocs
ShellExecuteExA

gdi32

GetStockObject
BitBlt
GetBkMode
GetTextCharsetInfo
DeleteDC
GetEnhMetaFilePaletteEntries
GetTextMetricsA
GetTextFaceA

comctl32

CreateToolbarEx
ImageList_DrawEx
ImageList_SetIconSize
ImageList_GetIcon
ImageList_LoadImageA
InitializeFlatSB
ImageList_Add
ImageList_BeginDrag

advapi32

OpenSCManagerW
IsValidSid
GetSecurityDescriptorDacl
CopySid

oleaut32

SafeArrayUnaccessData
SafeArrayCreate
CreateErrorInfo
SysAllocStringByteLen
SafeArrayRedim
VariantInit
SafeArrayGetElement
SysStringByteLen

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

60479c0c0c41f2a688d133dbab1eee33

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

version

ole32

shell32

gdi32

comctl32

advapi32

oleaut32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 49KB - Virtual size: 49KB

.rsrc Size: 22KB - Virtual size: 21KB

.pdata Size: - Virtual size: 20KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 49KB - Virtual size: 49KB

.rsrc
Size: 22KB - Virtual size: 21KB

.pdata
Size: - Virtual size: 20KB