56285e160ca68f0e4577996062c044b2628f0804870f7427054b8eabb134283b

Sharing

Copy URL

Twitter E-mail

General

Target

56285e160ca68f0e4577996062c044b2628f0804870f7427054b8eabb134283b
Size

109KB
MD5

001b3317504793dfc840c9dba0b5a74e
SHA1

baab3f585684d0e6beed1a29f871be66becf28d9
SHA256

56285e160ca68f0e4577996062c044b2628f0804870f7427054b8eabb134283b
SHA512

503f4a6176138562331593c14cea25ee949737b60a65eec9ab15f42582d105f9540c5ebc1721d894b4cd888b0ec428a1d03fd03b265cd8f010c1828a8921a10f
SSDEEP

3072:prlAU3STnpkWX6Pa/5HtUHgoBzVJ7JX5kFa9oE:pJAUeFoa/davJ7J+c9oE

Score

N/A

Malware Config

Signatures

Files

56285e160ca68f0e4577996062c044b2628f0804870f7427054b8eabb134283b
.exe windows x86

a5e82f4d9dafc1de0bc98ffa57ff8769

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

calloc
_setmode
sinh
__setusermatherr
strncpy
_exit
fprintf
__set_app_type
atoi
_iob
memset
__getmainargs
__p__fmode
_except_handler3
fwrite
_vsnprintf
fputc
__dllonexit
_stricmp
__p___initenv
_initterm
__p__commode
malloc
strcpy
_adjust_fdiv
strchr
_XcptFilter
free
_controlfp

comdlg32

GetOpenFileNameA

kernel32

FileTimeToDosDateTime
GlobalFree
GetEnvironmentStrings
RtlUnwind
GetNumberFormatA
OutputDebugStringA
GetCurrentThreadId
LCMapStringA
LCMapStringW
SetFileTime
InterlockedDecrement
GetSystemDirectoryA
GetThreadLocale

user32

FillRect
GetCapture
wsprintfA
SetWindowsHookExA
LoadIconA
IsIconic
GetClientRect
ReleaseDC
SetForegroundWindow
GetScrollPos
GetCursorPos
SetDlgItemTextA

gdi32

CreateDIBitmap
SetWorldTransform
TextOutA
EnumFontsA
GetTextMetricsW
GetDIBits
SelectClipRgn
StretchBlt
CreateDCW
CreatePenIndirect
SelectObject
ExtTextOutW

advapi32

DeregisterEventSource
RegEnumKeyExW
RegCreateKeyExA
RegDeleteValueW
DeleteService
GetLengthSid
RegCloseKey
CryptAcquireContextA
QueryServiceStatus
RegDeleteKeyA
RegQueryValueA
SetSecurityDescriptorOwner
RegOpenKeyA
OpenServiceA
CopySid
GetTokenInformation
SetSecurityDescriptorDacl

comctl32

ImageList_Destroy
ImageList_Read
ImageList_BeginDrag
ImageList_Create
ImageList_DragEnter
ImageList_GetBkColor
CreateStatusWindowA
ImageList_SetImageCount
ImageList_DrawEx

ole32

StringFromIID
StgOpenStorage
ProgIDFromCLSID
CoTaskMemFree
RevokeDragDrop
OleRun
CoUninitialize
CoLoadLibrary
IsEqualGUID

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5e82f4d9dafc1de0bc98ffa57ff8769

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

comctl32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 35KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 35KB

.rsrc
Size: 32KB - Virtual size: 31KB