a6f853d72ef1f5a8526886552d6737eb9cc19c7fccd9656c34e07e865cfb8db4

Sharing

Copy URL Twitter E-mail

General

Target

a6f853d72ef1f5a8526886552d6737eb9cc19c7fccd9656c34e07e865cfb8db4
Size

79KB
MD5

79b409d1e59152c1b7f2617068ae310d
SHA1

3c3fb98fb5d472ea685ed27b9ce6ac7ca2a1b1e0
SHA256

a6f853d72ef1f5a8526886552d6737eb9cc19c7fccd9656c34e07e865cfb8db4
SHA512

e9b56318166c6aeda89d275535450d6daa4337f5c9c4a00c6362e2244c7d9c6948e17fb2beb77d7264b50e26182d94fb4b9d3a10d7bbe939dcfd63864b67d363
SSDEEP

1536:UnokfkLILnivxEbeV9+AL53S7PZdUjJPcr1YnIInsLuTdcXoAVs/4MLe:UnokfkkLnOxEbe6u3SiC6IImU0xVx

Score

N/A

Malware Config

Signatures

Files

a6f853d72ef1f5a8526886552d6737eb9cc19c7fccd9656c34e07e865cfb8db4
.exe windows x86

b65b4bf674989a237aaad6375af21511

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__fmode
memcpy
free
_XcptFilter
strrchr
fopen
fclose
calloc
__p__commode
fread
_strnicmp
_vsnprintf
_adjust_fdiv
strlen
_exit
_initterm
_controlfp
__getmainargs
_except_handler3
__p___initenv
sprintf
__setusermatherr

kernel32

EnumCalendarInfoA
GetCommandLineW
GetModuleHandleW
InterlockedExchange
GetDiskFreeSpaceA
GetProcessHeap
SetFileTime
RaiseException
GetSystemTime
CreateFileMappingA
GetProcAddress
VirtualProtectEx
IsDebuggerPresent
GetTempPathA
GetConsoleOutputCP

advapi32

GetTokenInformation
RegSetValueExW
RegEnumValueA
CryptDestroyHash
OpenProcessToken
RegCreateKeyExA
GetSecurityDescriptorDacl
RegDeleteKeyA
IsValidSid
AllocateAndInitializeSid
RegQueryValueA
OpenThreadToken
EqualSid
AdjustTokenPrivileges

user32

CallWindowProcA
EnableWindow
SetCursor
IsWindowVisible
SetScrollInfo
UnregisterClassA
ShowOwnedPopups
SetClassLongA
DestroyMenu
DispatchMessageA
IsZoomed
RegisterClassA

ole32

CoUninitialize
OleIsCurrentClipboard
CoCreateInstance
StgOpenStorage
PropVariantClear
CoTaskMemAlloc
ReleaseStgMedium
CoCreateGuid
CreateStreamOnHGlobal
OleUninitialize
StringFromIID
IIDFromString
CoInitializeEx
CLSIDFromString
RegisterDragDrop
CreateBindCtx

gdi32

SetBkColor
DeleteEnhMetaFile
GetOutlineTextMetricsA
CreateFontW
GetROP2
SetAbortProc
SelectPalette
GetNearestColor
SetArcDirection
GetBkMode
PlayEnhMetaFile
CreateBitmap
BeginPath
CreateBrushIndirect

comctl32

ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_DragEnter
InitializeFlatSB
ImageList_Read
ImageList_GetImageInfo
ImageList_DrawEx
ImageList_SetIconSize
ImageList_Replace
PropertySheetA
CreatePropertySheetPageW

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b65b4bf674989a237aaad6375af21511

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

ole32

gdi32

comctl32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 61KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 61KB

.rsrc
Size: 3KB - Virtual size: 3KB