82622ab1023feeb1ddf918a20b46b9fbd84ad444caad620cc424abfae155dd46

Sharing

Copy URL

Twitter E-mail

General

Target

82622ab1023feeb1ddf918a20b46b9fbd84ad444caad620cc424abfae155dd46
Size

104KB
MD5

6dec363b260989ef06f96855302f3848
SHA1

8c387d1f27ee234d6158b21eb67a72d1bff3c72e
SHA256

82622ab1023feeb1ddf918a20b46b9fbd84ad444caad620cc424abfae155dd46
SHA512

3c025cd74e94b16bff767ae0282acf3a15dd0fd20716c6e9a50b5504fbacae1b6126ecd56fd1e923c8e46b7dd6fae9e2a3564f99dc11c1cb32f0358ff2605224
SSDEEP

1536:KTbpUIRVQupk9qd7EKH67o9Ou7Z8CaLY8QYi3c5Ur0ldD3k2EN5IX2QAviGG8n5e:KnptWYW+sLJQ3NyQEublLa

Score

N/A

Malware Config

Signatures

Files

82622ab1023feeb1ddf918a20b46b9fbd84ad444caad620cc424abfae155dd46
.exe windows x86

115eb37c314a3af5cc56092dc58b991f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strlen
strcpy
__setusermatherr
__p__fmode
__set_app_type
abort
_XcptFilter
_adjust_fdiv
_except_handler3
sqrt
fwrite
__p__commode
__p__environ
wcslen
getenv
_exit
__p___initenv
calloc
__getmainargs
_initterm
strchr
strncmp
free
_controlfp

comdlg32

GetOpenFileNameA

kernel32

GetCurrentProcess
SetUnhandledExceptionFilter
GetNumberFormatA
MoveFileA
WaitForMultipleObjects
GetSystemTime
CreateProcessW
GetCurrentDirectoryA
IsDBCSLeadByte
GetFileAttributesA
UnhandledExceptionFilter
Sleep
VirtualProtectEx
GetModuleHandleA
InterlockedCompareExchange
FileTimeToLocalFileTime
TerminateProcess
lstrcmpiW
GetOEMCP

user32

MapWindowPoints
GetIconInfo
DeleteMenu
IsIconic
GetSystemMenu
ShowWindow
CloseClipboard
SetDlgItemTextA
DestroyWindow
GetScrollRange
GetWindowLongA
DrawTextA

comctl32

ImageList_EndDrag
ImageList_BeginDrag
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_Destroy
ImageList_GetImageInfo
InitCommonControls
ImageList_SetIconSize
ImageList_Write

ole32

OleSetMenuDescriptor
CoTaskMemAlloc
CoInitializeEx
RevokeDragDrop
IIDFromString
CoRevokeClassObject
StringFromCLSID

advapi32

AllocateAndInitializeSid
RegDeleteValueA
InitializeAcl
RegQueryValueExW
CryptHashData
RegCreateKeyA
QueryServiceStatus
RegEnumKeyExA
RegEnumKeyA
RegEnumValueW
AdjustTokenPrivileges
CryptAcquireContextA
LookupPrivilegeValueW
CheckTokenMembership

gdi32

GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetMapMode
GetNearestColor
IntersectClipRect
GetObjectType
Pie
StrokeAndFillPath
CreatePen
CombineRgn
SetEnhMetaFileBits
PtVisible
EnumFontFamiliesExW

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

115eb37c314a3af5cc56092dc58b991f

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

ole32

advapi32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 23KB - Virtual size: 22KB