86a4c9496d670f324c3edfd26499281948551ba86607190649b83cb7b1684d48

Sharing

Copy URL

Twitter E-mail

General

Target

86a4c9496d670f324c3edfd26499281948551ba86607190649b83cb7b1684d48
Size

106KB
MD5

0436058b48355afdf75c9aa1f1f23ee2
SHA1

126bee2e46a8d498cfd94a7298a45f22aaf831d1
SHA256

86a4c9496d670f324c3edfd26499281948551ba86607190649b83cb7b1684d48
SHA512

1591bd791dbe129396a68e1a6c0c57f8a15f67cba6f72848744295b1daac818216e225db1277539c505453dfdc2aa46994444ec195591dabe2c39a7c3e173774
SSDEEP

1536:v2wb49DhgMkwBxmK6pT6qnP5GeGv8JRIp+k71gdjicpjzhI7XYrBHQSkBK:+8ODh9i1tnBGP0IUhj1RrVOQ

Score

N/A

Malware Config

Signatures

Files

86a4c9496d670f324c3edfd26499281948551ba86607190649b83cb7b1684d48
.exe windows x86

789c6bc17ca68b1b6d5407a6527c7501

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_write
calloc
__p__environ
__setusermatherr
_snprintf
__p__commode
sinh
_XcptFilter
_stricmp
exit
_except_handler3
_exit
strrchr
_onexit
fflush
_adjust_fdiv
memset
fopen
__p___initenv
__getmainargs
_controlfp
__p__fmode
strlen
free
realloc
_strnicmp
__set_app_type
_initterm

comdlg32

GetOpenFileNameA

kernel32

WaitForMultipleObjects
GetCurrentThreadId
GlobalUnlock
InterlockedCompareExchange
GetUserDefaultLCID
WideCharToMultiByte
DuplicateHandle
IsBadReadPtr
SetCurrentDirectoryA
LCMapStringW
GetSystemTimeAsFileTime
GetNumberFormatA
GetExitCodeProcess
GlobalLock
GetCurrentDirectoryA

user32

MapWindowPoints
EqualRect
GetSubMenu
DrawTextA
SetDlgItemTextA
InvalidateRect
PostMessageA
SystemParametersInfoA

gdi32

RemoveFontResourceA
CreateDCW
GetEnhMetaFilePaletteEntries
EnumFontFamiliesExA
GetNearestColor
EnumEnhMetaFile
GetTextMetricsW
GetClipBox
GetEnhMetaFileHeader
OffsetRgn
GetPixel
CreateFontIndirectW
GetOutlineTextMetricsA
PatBlt
MaskBlt
GetNearestPaletteIndex
GetSystemPaletteEntries
RoundRect
CopyMetaFileA
GetTextExtentPointA

comctl32

CreateStatusWindowA
ImageList_SetImageCount
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_SetOverlayImage
ImageList_BeginDrag
ImageList_Replace
CreateToolbarEx
ImageList_AddMasked
ImageList_SetDragCursorImage
ImageList_LoadImageA
ImageList_EndDrag
InitCommonControlsEx
ImageList_DragShowNolock

advapi32

RegDeleteValueW
RevertToSelf
IsValidSid
SetSecurityDescriptorDacl
GetLengthSid
RegCreateKeyExA
FreeSid
CryptReleaseContext
RegEnumKeyExW
RegQueryInfoKeyW
RegEnumValueA

ole32

CoSetProxyBlanket
OleSetMenuDescriptor
CoGetMalloc
CreateILockBytesOnHGlobal
RegisterDragDrop
StringFromCLSID
CoRegisterMessageFilter
CoRegisterClassObject

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

789c6bc17ca68b1b6d5407a6527c7501

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

comctl32

advapi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 31KB - Virtual size: 30KB