7554f9bac783f7cd98d1bad4b9af20284b32adda8d5ce7565b19ccdb912a7596

Sharing

Copy URL Twitter E-mail

General

Target

7554f9bac783f7cd98d1bad4b9af20284b32adda8d5ce7565b19ccdb912a7596
Size

140KB
MD5

0f877f0b5bb04ccf27b43aeac0401050
SHA1

f8a9650390dec597e16876bdec1aa35e5f99f465
SHA256

7554f9bac783f7cd98d1bad4b9af20284b32adda8d5ce7565b19ccdb912a7596
SHA512

10d9cc42116f3ef77740a28a2506db1d5b78b74fd9cc930fc47e12884db4328a2cb20d1117c11463487d6a36be1ca9d59c9b407364ded229cf4281eefff84e96
SSDEEP

3072:GxVtc+YsLWR71X7hkCkRANHQXtren0jJMHqp790s5exnYki:YV2+Yp1Lyrenxxn

Score

N/A

Malware Config

Signatures

Files

7554f9bac783f7cd98d1bad4b9af20284b32adda8d5ce7565b19ccdb912a7596
.exe windows x86

0f8642177babad9868ce202035f16323

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
RaiseException
IsDBCSLeadByte
Sleep
GlobalLock
GetTimeZoneInformation
GetModuleHandleA
InterlockedIncrement
GetCommandLineW
GetEnvironmentVariableA
FreeEnvironmentStringsW
GetStartupInfoA

msvcrt

_initterm
__set_app_type
__getmainargs
_XcptFilter
__p__fmode
free
_lseeki64
_strcmpi
__setusermatherr
log
exit
__p__commode
_except_handler3
wctomb
_acmdln
atexit
_fdopen
putchar
_adjust_fdiv
_exit

user32

DrawTextA
GetScrollPos
GetWindowLongA
GetSysColor
CharNextA
MessageBeep
MessageBoxA
DeleteMenu
IsChild
GetTopWindow
GetCursorPos
SetScrollInfo
SetScrollPos
GetSystemMetrics
SetWindowPlacement

advapi32

CryptGenRandom
RegFlushKey
RegCloseKey
EqualSid
RegEnumKeyExA
GetSecurityDescriptorDacl
RegEnumKeyExW
OpenServiceA
SetSecurityDescriptorGroup
CryptHashData
CryptReleaseContext
SetSecurityDescriptorDacl
GetUserNameA

version

GetFileVersionInfoSizeW
VerInstallFileA
VerQueryValueA
GetFileVersionInfoA
VerLanguageNameA
VerQueryValueW

oleaut32

SetErrorInfo
SafeArrayRedim
VariantCopyInd
SafeArrayCreate
VariantClear
SafeArrayGetElement

ole32

CoGetMalloc
CoCreateInstance
StgOpenStorage
CoRegisterClassObject
CoLoadLibrary
CoDisconnectObject

shell32

SHGetFileInfo
DragQueryFileW
ShellExecuteEx
SHGetPathFromIDListW
ShellExecuteExW

comctl32

ImageList_SetOverlayImage
ImageList_DragEnter
ImageList_GetImageCount

gdi32

SetEnhMetaFileBits
CopyMetaFileA
SetTextAlign

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dixmcwx
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0f8642177babad9868ce202035f16323

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

version

oleaut32

ole32

shell32

comctl32

gdi32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 49KB - Virtual size: 49KB

.rsrc Size: 27KB - Virtual size: 55KB

dixmcwx Size: - Virtual size: 4KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 49KB - Virtual size: 49KB

.rsrc
Size: 27KB - Virtual size: 55KB

dixmcwx
Size: - Virtual size: 4KB