89f14dea2c03f56cfb5860334ab75cab7d4939eec9f5cfd2cac54ffc384bd946

Sharing

Copy URL Twitter E-mail

General

Target

89f14dea2c03f56cfb5860334ab75cab7d4939eec9f5cfd2cac54ffc384bd946
Size

107KB
MD5

b63eb3827ec7a44725938f70ca483456
SHA1

20ac841b825b35deb1304d6661df19484476a0f0
SHA256

89f14dea2c03f56cfb5860334ab75cab7d4939eec9f5cfd2cac54ffc384bd946
SHA512

449a32559f87a49a784eb6562f099e514cda9a9ba9c39a32955148e6f6b5d264617ad669d5b1e0126519a018cb9e6e3c8d4fdf9e5a86b0fbcdda8241806bea92
SSDEEP

1536:nDptEm/V2MEXJ9AqKQmKpeZ9KpNSr9qt7NfBebQjCNEuGlzzA685N8Mbb2ipCMqC:jEm9H+mTKkD0NSR4tBewWYQZNvbDYMQO

Score

N/A

Malware Config

Signatures

Files

89f14dea2c03f56cfb5860334ab75cab7d4939eec9f5cfd2cac54ffc384bd946
.exe windows x86

a1c3e449575d5d9d05135539a544741d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__getmainargs
calloc
_XcptFilter
_initterm
__p__fmode
__p__commode
_except_handler3
free
getenv
signal
fclose
__dllonexit
__setusermatherr
_adjust_fdiv
sinh
_exit
fflush
__p___initenv
__set_app_type
fputs
_controlfp
atoi
_strnicmp
__p__environ

comdlg32

GetOpenFileNameA

kernel32

SetThreadLocale
GetLocalTime
GetFileAttributesA
SetEnvironmentVariableA
CompareFileTime
GetCommandLineA
GetCurrentProcess
GetCurrentThreadId
FlushFileBuffers
GetNumberFormatA
GetLastError
DeleteFileA
GetModuleHandleW

user32

LoadBitmapA
EndDialog
SetDlgItemTextA
ShowWindow
IsIconic
SetWindowsHookExA
CloseClipboard
BeginPaint
GetFocus
GetDlgItem
EnumThreadWindows
GetWindowPlacement
GetKeyState
GetMenuItemID

comctl32

ImageList_LoadImageW
DestroyPropertySheetPage
ImageList_GetIconSize
ImageList_AddMasked
InitCommonControlsEx
CreateStatusWindowA
ImageList_DrawEx
InitCommonControls
ImageList_Replace
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_GetImageCount
ImageList_Add
ImageList_Write
PropertySheetW

advapi32

InitializeAcl
DeregisterEventSource
RegEnumKeyExW
RegOpenKeyA
CryptGenRandom
EqualSid
CryptReleaseContext
GetTokenInformation
RegOpenKeyExW
RegOpenKeyW
RegEnumValueW
AllocateAndInitializeSid
RegQueryValueA

gdi32

StrokePath
GetROP2
CreateCompatibleBitmap
GetPixel
SetViewportExtEx
SetStretchBltMode
SetDIBits
SetTextCharacterExtra
EndPage
PlayMetaFileRecord
GetObjectW
InvertRgn
GetTextCharsetInfo

ole32

DoDragDrop
CoGetInterfaceAndReleaseStream
StgOpenStorage
OleDraw
OleInitialize
OleRun
CLSIDFromProgID
CreateStreamOnHGlobal
CoRevokeClassObject
GetRunningObjectTable
CoTaskMemFree

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1c3e449575d5d9d05135539a544741d

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

advapi32

gdi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 35KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 35KB

.rsrc
Size: 32KB - Virtual size: 32KB