a64bbe716311d78ec69cf41ed1db9418985a83e29c64f4fde7f99995507401ac

Sharing

Copy URL Twitter E-mail

General

Target

a64bbe716311d78ec69cf41ed1db9418985a83e29c64f4fde7f99995507401ac
Size

88KB
MD5

6b31da1112ead88371504aa9a2284a49
SHA1

30c4028a4bf362a3396315ed10a1ebdde8dbb644
SHA256

a64bbe716311d78ec69cf41ed1db9418985a83e29c64f4fde7f99995507401ac
SHA512

86a05540ab466be4d153e9b5b39114898cb79d61ad2913068b2d83e7caea6d7b782151803a870e04f2ec6e698dc87ac802e31d8fa43ceea331e1f158ea2ed256
SSDEEP

1536:5mYLsPQk06qWGmnAbBDGa44RVlXe3ofKVizQn4F0rVdntVpW451NL8:LoIk06Hqqa42OYS8dObt/5DL8

Score

N/A

Malware Config

Signatures

Files

a64bbe716311d78ec69cf41ed1db9418985a83e29c64f4fde7f99995507401ac
.exe windows x86

4ad7590fae4729e7d33d883596c79ffb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorA

msvcrt

_write
__getmainargs
_except_handler3
_adjust_fdiv
strcmp
signal
__setusermatherr
_acmdln
_strnicmp
calloc
_XcptFilter
printf
__set_app_type
strchr
malloc
atan
_initterm
exit
__p__fmode
__p__commode
free
_exit

kernel32

GlobalFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
RaiseException
GetConsoleOutputCP
Sleep
GetStartupInfoA
VirtualQuery
GetFileType

user32

LoadIconA
GetClientRect
ReleaseCapture

advapi32

IsValidSid
RegQueryValueExW
InitializeSecurityDescriptor
RegQueryInfoKeyA
AdjustTokenPrivileges
RegEnumKeyA
RegOpenKeyExW
RegEnumValueW
GetUserNameA

comctl32

ImageList_SetImageCount
ImageList_Add

oleaut32

SafeArrayCreate
SafeArrayRedim
SysFreeString
VariantCopy
VariantCopyInd
GetActiveObject
SysStringLen
SafeArrayGetUBound
VariantClear

ole32

CoGetInterfaceAndReleaseStream
OleSetMenuDescriptor
CLSIDFromString
CoTaskMemRealloc

shell32

CommandLineToArgvW
Shell_NotifyIconA
SHGetFolderPathW
Shell_NotifyIconW
ShellExecuteEx

gdi32

GetRegionData
GetNearestColor
CreatePalette
StretchDIBits
ExtFloodFill

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ad7590fae4729e7d33d883596c79ffb

Headers

File Characteristics

Imports

comdlg32

msvcrt

kernel32

user32

advapi32

comctl32

oleaut32

ole32

shell32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 63KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 63KB

.rsrc
Size: 27KB - Virtual size: 26KB