9602965212c72f9adf0738d54550347f3ba96d50c650012e775df2c9f309c920

Sharing

Copy URL Twitter E-mail

General

Target

9602965212c72f9adf0738d54550347f3ba96d50c650012e775df2c9f309c920
Size

104KB
MD5

9ece6da962d788e8b350132c834f11e0
SHA1

4ca91c66568663c41149c7d1481b2db45f9bcddd
SHA256

9602965212c72f9adf0738d54550347f3ba96d50c650012e775df2c9f309c920
SHA512

845d29b8ae8ff4ed1b01d649887843c636e8cda9a7fa7ded475e5ce3dd2e57cf8ea7792e629458b29daceedebc1b7acb0531b636cc7eef4a5924432b99a42664
SSDEEP

3072:USnIH4YMpMc0DvzsnT1gMDrJtdVFDD0Zum1TY:NnIH/xwT1gM3JpZ0sm1TY

Score

N/A

Malware Config

Signatures

Files

9602965212c72f9adf0738d54550347f3ba96d50c650012e775df2c9f309c920
.exe windows x86

2e9605e00fa4980d2413b99289f8ad5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_cexit
strrchr
sqrt
_exit
__p__fmode
fwrite
_setmode
_adjust_fdiv
strchr
__p__commode
sprintf
__set_app_type
exit
__setusermatherr
signal
_controlfp
calloc
getenv
__getmainargs
_XcptFilter
__p__environ
strcpy
__p___initenv
_initterm
abort
memset
fputs
_except_handler3

comdlg32

GetOpenFileNameA

kernel32

GetNumberFormatA
CreateFileMappingA
GetTempPathW
VirtualProtectEx
MulDiv
SetHandleCount
FileTimeToSystemTime
VirtualProtect
GetUserDefaultLangID
InterlockedCompareExchange
GetFileAttributesA
lstrcmpiW
GetSystemTime
GetModuleFileNameA
GetThreadLocale

user32

SetMenu
GetClassInfoA
GetLastActivePopup
EnumThreadWindows
LoadIconA
DrawIcon
IsRectEmpty
LoadCursorA
GetIconInfo
FillRect
SetDlgItemTextA
GetClassNameA
FindWindowA
EnumWindows
GetMenu
DestroyIcon

ole32

RevokeDragDrop
ReleaseStgMedium
IIDFromString
CoTaskMemFree
CoSetProxyBlanket
CreateBindCtx
OleInitialize
OleSetMenuDescriptor
StringFromIID
CoInitializeSecurity

comctl32

ImageList_LoadImageW
ImageList_GetBkColor
ImageList_Add
ImageList_DrawEx
ImageList_EndDrag
ImageList_SetDragCursorImage
ImageList_SetOverlayImage
InitCommonControls
ImageList_SetImageCount
ImageList_LoadImageA
CreatePropertySheetPageW

advapi32

GetSecurityDescriptorDacl
RegCreateKeyExW
DeleteService
RegEnumKeyExW
IsValidSid
InitializeAcl
CryptHashData
RegSetValueExW
RegQueryValueA
OpenSCManagerW
OpenServiceA
RegEnumKeyW
RegEnumValueW
RegEnumKeyExA
CloseServiceHandle

gdi32

CreateSolidBrush
GetBitmapBits
GetBkMode
PolyBezierTo
SetWindowOrgEx
SetAbortProc
CopyMetaFileA
SetTextAlign
GetDIBColorTable
DeleteMetaFile
GetDIBits
DeleteDC
SetDIBitsToDevice
StretchBlt
EnumEnhMetaFile
OffsetWindowOrgEx

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2e9605e00fa4980d2413b99289f8ad5c

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

comctl32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 89KB - Virtual size: 104KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 89KB - Virtual size: 104KB