6209ec839bf4ffb4d4d912035740c0bf8528a74900f4a828d77b9c9ac4ba01ec

Sharing

Copy URL Twitter E-mail

General

Target

6209ec839bf4ffb4d4d912035740c0bf8528a74900f4a828d77b9c9ac4ba01ec
Size

91KB
MD5

50219bfd2caa551548fa4dc1efa625e9
SHA1

dc40bf340ad49e141c8dd83803b36c3e6fc6624b
SHA256

6209ec839bf4ffb4d4d912035740c0bf8528a74900f4a828d77b9c9ac4ba01ec
SHA512

e09fee86b20093077049eba2e20870c696c19688a67e4907a1830b4c8b2decfa4e47c88523f6c52c17522048e3367d88b2ffe74fc9fc85a099196a81567b5f0f
SSDEEP

1536:F6XMW0TO9IuqyLqckFKRLkesc1Ru+2RkHy+neJ4K0XnJLvNOGVdPCUFD5K:CMWQEqyLBsKWewRkHy+nJDNfq+K

Score

N/A

Malware Config

Signatures

Files

6209ec839bf4ffb4d4d912035740c0bf8528a74900f4a828d77b9c9ac4ba01ec
.exe windows x86

8785cc6e2c98560c3db39f921c9f0194

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fwrite
sqrt
strlen
getenv
__p__fmode
_adjust_fdiv
strncpy
_except_handler3
free
__getmainargs
abort
calloc
_exit
fopen
__set_app_type
__setusermatherr
_initterm
strstr
exit
_acmdln
fputc
__p__commode

kernel32

ReadFile
WriteFile
VirtualProtect
GetFileAttributesW
GetCurrentProcessId
FreeLibrary
GetStartupInfoA
InterlockedDecrement
GetUserDefaultLCID
FileTimeToLocalFileTime
UnhandledExceptionFilter
GetModuleHandleW
SetUnhandledExceptionFilter

user32

SetScrollInfo
PeekMessageA
SetFocus
SystemParametersInfoA
DestroyMenu
GetSystemMetrics
GetScrollInfo
SetForegroundWindow
GetSubMenu
DispatchMessageA
GetDC
SetClipboardData
SetClassLongA
SetWindowLongA

ole32

IsAccelerator
PropVariantClear
OleSetMenuDescriptor
CoReleaseMarshalData
CoInitializeSecurity
IsEqualGUID
IIDFromString
CoGetMalloc
CreateItemMoniker
CoGetInterfaceAndReleaseStream

oleaut32

VariantCopy
GetActiveObject
SafeArrayPutElement
VariantInit
SafeArrayGetElement
SysFreeString
SysStringLen
SafeArrayUnaccessData
SysReAllocStringLen
VariantCopyInd
SafeArrayRedim

advapi32

EqualSid
RevertToSelf
OpenThreadToken
LookupPrivilegeValueW
RegEnumValueA
CryptDestroyHash
RegQueryValueExW
AddAccessAllowedAce
RegFlushKey
RegQueryValueA
GetTokenInformation
RegDeleteKeyA
RegCreateKeyExA
OpenSCManagerA
OpenServiceW

gdi32

SetWindowExtEx
SetWorldTransform
CreateBitmap
SetAbortProc
PatBlt
SetBrushOrgEx
RestoreDC
GetPaletteEntries
EndPage
GetObjectW

comctl32

ImageList_Write
ImageList_Remove
ImageList_EndDrag
InitializeFlatSB
CreateStatusWindowA
ImageList_DragShowNolock
InitCommonControls
ImageList_Draw

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8785cc6e2c98560c3db39f921c9f0194

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

ole32

oleaut32

advapi32

gdi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 3KB - Virtual size: 2KB