81b734b477ff84a6d81347c969900fcb80244f8c3382299966d1a732e8f7ba41

Sharing

Copy URL Twitter E-mail

General

Target

81b734b477ff84a6d81347c969900fcb80244f8c3382299966d1a732e8f7ba41
Size

107KB
MD5

97bc2871a2d55b0f9e86e530c51d73ca
SHA1

3258ef30048052854bef4c35af5d02c63d036cba
SHA256

81b734b477ff84a6d81347c969900fcb80244f8c3382299966d1a732e8f7ba41
SHA512

1a789ec757ca79315055b359dd8ce1ec6e03158f4a41d583a026262ed0598fbcc7b6d3b337db484023cb19a6e67c47ec9ccf949ab11318f905cb24330b3a30b4
SSDEEP

1536:XYwc4Y/UhMb+qdSBEAyJD3pX1ep6rBzgOiih9l+G0rTf251BWK8hjs/zr3NbRL:XVC/0qZJD3beg2m+uPWK8hs/zLNbV

Score

N/A

Malware Config

Signatures

Files

81b734b477ff84a6d81347c969900fcb80244f8c3382299966d1a732e8f7ba41
.exe windows x86

8d57cb287b13128c1783067025d8393e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
memset
abort
_adjust_fdiv
_setmode
__getmainargs
__set_app_type
_except_handler3
calloc
sinh
strcpy
memcpy
fprintf
fflush
_XcptFilter
_controlfp
free
atexit
_exit
strchr
__p__commode
__p__fmode
__p___initenv
strrchr
signal
__setusermatherr

comdlg32

GetOpenFileNameA

kernel32

GetNumberFormatA
GetCPInfo
GetCurrentThreadId
CompareFileTime
InterlockedIncrement
RtlUnwind
FreeEnvironmentStringsW
InterlockedDecrement
SetErrorMode
CreateProcessW
GetFileTime
SetThreadLocale
RaiseException
GetSystemTime
CreateProcessA
WritePrivateProfileStringA
GetCurrentProcess
InterlockedCompareExchange
CompareStringA

user32

SendMessageA
MessageBeep
SetScrollInfo
GetScrollInfo
SetScrollRange
GetDCEx
GetForegroundWindow
GetFocus
GetMessageA
WaitMessage
GetScrollPos
DrawTextA
SetWindowsHookExA
SetDlgItemTextA
PeekMessageA
IsChild

advapi32

GetLengthSid
SetSecurityDescriptorOwner
CryptHashData
CloseServiceHandle
RegQueryValueA
SetSecurityDescriptorDacl
RegCreateKeyExW
RegFlushKey
RegOpenKeyExW
LookupPrivilegeValueA
RegEnumKeyExW

comctl32

ImageList_AddMasked
InitCommonControls
ImageList_SetIconSize
PropertySheetA
ImageList_SetDragCursorImage
ImageList_BeginDrag
ImageList_DragLeave
CreateStatusWindowA
ImageList_GetBkColor
ImageList_DragEnter
CreateToolbarEx
ImageList_GetImageCount
InitCommonControlsEx

ole32

CoDisconnectObject
IsAccelerator
CoRegisterClassObject
CoCreateInstance
CoGetClassObject
CLSIDFromString
CoUninitialize
CoTaskMemFree
OleDraw
RevokeDragDrop

gdi32

ScaleWindowExtEx
StartPage
CreateRectRgn
SetTextAlign
Polyline
CreatePen
StartDocA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8d57cb287b13128c1783067025d8393e

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

advapi32

comctl32

ole32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 32KB - Virtual size: 32KB