8381fc9ab423d4e8004334c526dd3eab4e941ab5abe8b3747d6d6f1fcdba5048

Sharing

Copy URL

Twitter E-mail

General

Target

8381fc9ab423d4e8004334c526dd3eab4e941ab5abe8b3747d6d6f1fcdba5048
Size

108KB
MD5

b1d1698b0ca64d5bf1ec153332e9780e
SHA1

577cc3acdab8946c00451cc7ce561ea118dd0ff3
SHA256

8381fc9ab423d4e8004334c526dd3eab4e941ab5abe8b3747d6d6f1fcdba5048
SHA512

c10b37ceba9e510bd7e9005d7ebe0689f37959052b9fa88cf05ff5cbd6d1296c6708a6d347d6779ec475ebe42702977cb31d5d6c04add68745025f4396a7399e
SSDEEP

1536:LrOgk6x6Gw0BMZYU3CTXpAR4bzD5fNhFeMWboubyi3579DtjhQa1Xx/3Pg6UK4:fOF6x6Gw0SEDg4nFfI5oKVtTf3P/D4

Score

N/A

Malware Config

Signatures

Files

8381fc9ab423d4e8004334c526dd3eab4e941ab5abe8b3747d6d6f1fcdba5048
.exe windows x86

204c2c807cd6db66df020ef2ece464cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
GetStringTypeW
GetConsoleOutputCP
GetLocalTime
GetTickCount
GlobalReAlloc
GetSystemInfo
LocalFileTimeToFileTime
GetCurrentThreadId
FreeEnvironmentStringsW
IsDBCSLeadByte
GetNumberFormatA
GlobalLock
WaitForMultipleObjects
DeleteFileA
GetCommandLineA
DuplicateHandle

msvcrt

__setusermatherr
_snprintf
getenv
fwrite
_stricmp
strchr
calloc
_initterm
__set_app_type
fflush
fputs
__p__commode
sinh
_controlfp
_adjust_fdiv
_exit
strrchr
realloc
__p___initenv
_XcptFilter
_except_handler3
strlen
free
atexit
__getmainargs
__p__fmode

comdlg32

GetOpenFileNameA

user32

IsRectEmpty
RemovePropA
ReleaseDC
SetDlgItemTextA
RedrawWindow
GetParent
GetWindowLongA
GetMenuStringA
DrawIcon
LoadCursorA
GetClientRect
RegisterClassA
SendMessageA
InsertMenuItemA
IsDialogMessageA
EnableMenuItem
GetDesktopWindow
SetWindowPos
FrameRect

gdi32

GetWinMetaFileBits
GetCurrentObject
GetCharacterPlacementA
PolylineTo
GetPixel
LPtoDP
CreateSolidBrush
DPtoLP
SetPolyFillMode
GetStockObject
CreateRectRgnIndirect
GetObjectType
GetROP2

advapi32

CryptHashData
AddAccessAllowedAce
CryptGenRandom
CopySid
CryptDestroyHash
RegSetValueExW
CheckTokenMembership
RegDeleteKeyW
RegCloseKey
AllocateAndInitializeSid
QueryServiceStatus

comctl32

ImageList_DragEnter
DestroyPropertySheetPage
ImageList_SetDragCursorImage
CreateToolbarEx
ImageList_Write
ImageList_EndDrag
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Remove

ole32

CoInitializeSecurity
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
OleDraw
IsAccelerator
RegisterDragDrop
ProgIDFromCLSID
OleRun
CoRegisterMessageFilter
DoDragDrop
CreateItemMoniker
OleFlushClipboard

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

204c2c807cd6db66df020ef2ece464cd

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

gdi32

advapi32

comctl32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 33KB - Virtual size: 32KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 33KB - Virtual size: 32KB