b26414dfde101219b0498f2757fe1f4e980aa5d5551b488fe2ca4362072bd458

Sharing

Copy URL Twitter E-mail

General

Target

b26414dfde101219b0498f2757fe1f4e980aa5d5551b488fe2ca4362072bd458
Size

99KB
MD5

cc9304107ea443a04d3aeb4db152015e
SHA1

a630637499f0cbe431b08f9c85c316f73db5ae73
SHA256

b26414dfde101219b0498f2757fe1f4e980aa5d5551b488fe2ca4362072bd458
SHA512

e23a5dc2b75e5ead84cfed41ac1a7a5e82c2b39d78105c04ac9c9e5f8440a9ec4233d7debb395266aea51ee6e31dd281f7bb3b21ddae7c737a55986c07cd0739
SSDEEP

1536:c52+HloIsuEOK3tcsDxpFw4tZkPSX57f0QCBXtbTPJfBc3ZXbybtctg+UTtbZrb:c0vHxtcsVDHkKpqB9brXGZXb9tg+Etlf

Score

N/A

Malware Config

Signatures

Files

b26414dfde101219b0498f2757fe1f4e980aa5d5551b488fe2ca4362072bd458
.exe windows x86

81767a9fe27f1dfb3be324b44b1ce134

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_vsnprintf
abort
__dllonexit
atoi
fclose
fopen
calloc
memset
__set_app_type
__setusermatherr
__p__commode
strlen
_errno
__getmainargs
_adjust_fdiv
_except_handler3
_acmdln
malloc
_initterm
_exit
free
_snprintf
sqrt
__p__fmode

comdlg32

GetOpenFileNameA

kernel32

GetNumberFormatA
GlobalHandle
lstrcmpiW
GetStartupInfoA
MultiByteToWideChar
GetFullPathNameA
LCMapStringA
WaitForMultipleObjects
lstrlenW
lstrcatA
CreateFileMappingA
lstrcmpA
GlobalReAlloc
WritePrivateProfileStringA
GetSystemDirectoryA
GetOEMCP
FlushFileBuffers
TerminateProcess

user32

SetCursor
WaitMessage
ClientToScreen
ShowCursor
GetMenuStringA
SetDlgItemTextA
GetSysColor
wsprintfA
CreatePopupMenu
SystemParametersInfoA
DispatchMessageA
GetMenuState
IntersectRect
GetMenu
GetCursorPos

comctl32

ImageList_BeginDrag
ImageList_DrawEx
DestroyPropertySheetPage
ImageList_LoadImageW
ImageList_Destroy
ImageList_Read
ImageList_Draw
ImageList_EndDrag
InitCommonControlsEx
ImageList_Create
ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_DragLeave
ImageList_GetIcon
ImageList_SetBkColor

ole32

DoDragDrop
CLSIDFromProgID
CoDisconnectObject
CoRegisterClassObject
CoTaskMemAlloc
CoGetClassObject
OleSetMenuDescriptor
CoInitializeSecurity
CoTaskMemFree
OleDraw

advapi32

RegEnumKeyW
SetSecurityDescriptorDacl
RegCreateKeyA
RegEnumKeyA
InitiateSystemShutdownA
CryptReleaseContext
LookupPrivilegeValueW
RegEnumValueW
RegEnumKeyExA
ControlService
InitializeSecurityDescriptor

gdi32

SetMapperFlags
CopyMetaFileW
StrokePath
StartDocW
BitBlt
BeginPath
CreatePolygonRgn
PlayEnhMetaFile
GetObjectType
GetPixel
GetTextMetricsA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

81767a9fe27f1dfb3be324b44b1ce134

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

ole32

advapi32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 19KB - Virtual size: 96KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 19KB - Virtual size: 96KB