b1d3f0a4966f8a7e018853afb4c720a222a806ae8ff0178099ec57d69dfe137c

Sharing

Copy URL Twitter E-mail

General

Target

b1d3f0a4966f8a7e018853afb4c720a222a806ae8ff0178099ec57d69dfe137c
Size

88KB
MD5

0b53744239712960af7ce89a9128cbbd
SHA1

b2b605849504e6b16698a1a7b2523c93bd3efdaa
SHA256

b1d3f0a4966f8a7e018853afb4c720a222a806ae8ff0178099ec57d69dfe137c
SHA512

c685dd0e34a826b26d620c28cf1b55f789d518ea9245d02705d54f87a95986cd2235fab4354dba4e3e17d3f0eb2675bc1b23b49db27b177cd42077f5001eb9a4
SSDEEP

1536:nnRvm48mWKK+lJwlY0RPT6YkgnS9NJalrv/PPQ8NDvgDNAkGELsOYlDWvVdi68wC:nRvm4KbUiZTLTkKlDjTE8SVdi68wtjY

Score

N/A

Malware Config

Signatures

Files

b1d3f0a4966f8a7e018853afb4c720a222a806ae8ff0178099ec57d69dfe137c
.exe windows x86

e2ea74611a6ee25d2b1c76abefbfd01b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemDirectoryA
CreateDirectoryA
GetProcAddress
WriteConsoleA
GetProcessHeap
VirtualAlloc
GlobalHandle
GetDriveTypeA
GetModuleHandleW
GetConsoleOutputCP
VirtualProtectEx
GetLastError
GlobalReAlloc
GetSystemTimeAsFileTime
GetCommandLineW
lstrcmpiA
CompareStringA
LCMapStringW
TerminateProcess

msvcrt

__p__commode
_controlfp
_exit
_XcptFilter
malloc
__p___initenv
atexit
memset
__p__fmode
strlen
calloc
free
_initterm
_except_handler3
__set_app_type
fread
signal
__getmainargs
__setusermatherr
_errno
_vsnprintf
_adjust_fdiv

advapi32

RegCreateKeyExW
InitiateSystemShutdownA
RegSetValueExW
RegDeleteValueA
RegOpenKeyA
RegEnumKeyW
OpenSCManagerA
FreeSid
OpenThreadToken
RegEnumKeyExW
InitializeAcl
AddAccessAllowedAce
RegOpenKeyW
RegSetValueExA

gdi32

Rectangle
CreateRectRgnIndirect
RectVisible
GetMapMode
StretchBlt
GetTextFaceW
CreateFontW
DPtoLP
StrokeAndFillPath
StrokePath
CreateICW
AddFontResourceA
CreateEllipticRgn

comctl32

ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Add
ImageList_SetIconSize
CreatePropertySheetPageW
PropertySheetW
ImageList_ReplaceIcon
ImageList_Create
InitCommonControlsEx

ole32

OleDraw
CreateStreamOnHGlobal
IsEqualGUID
CoCreateGuid
OleSetMenuDescriptor
StringFromIID
CoCreateInstance
StringFromGUID2
StringFromCLSID
OleRun
OleIsCurrentClipboard
GetRunningObjectTable
CoUninitialize
IIDFromString
CoLoadLibrary

user32

SetRect
SetWindowTextA
ShowWindow
LoadIconA
GetMenuStringA
IsDialogMessageA
DispatchMessageA
GetMenuItemCount
DestroyCursor
GetMessageA
CreatePopupMenu
GetClassNameA
DestroyMenu

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2ea74611a6ee25d2b1c76abefbfd01b

Headers

File Characteristics

Imports

kernel32

msvcrt

advapi32

gdi32

comctl32

ole32

user32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 63KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 63KB

.rsrc
Size: 7KB - Virtual size: 6KB