804561d5568eddeeadfe7a83c558c7bd52202c02cb8ddb1d263a3a24ff652719

Sharing

Copy URL Twitter E-mail

General

Target

804561d5568eddeeadfe7a83c558c7bd52202c02cb8ddb1d263a3a24ff652719
Size

117KB
MD5

75e2f53836079c6acb844ad2a89ce089
SHA1

1e410f84fde8cf7fa8764fb2c8acdb25be3805c4
SHA256

804561d5568eddeeadfe7a83c558c7bd52202c02cb8ddb1d263a3a24ff652719
SHA512

860e2c0d282e2f78f0e807d68b52a315ba251796c72983ff1d1b55ee5ae2afa1a05c68a2a88e2e9174e0ef20d31abbe51017d1ac1d505b955928086e58189b5e
SSDEEP

3072:QBDLrsviQWuFvHNjkmirhSo3kEOsINs4QT:QDUivuFfNjuh/3BC7QT

Score

N/A

Malware Config

Signatures

Files

804561d5568eddeeadfe7a83c558c7bd52202c02cb8ddb1d263a3a24ff652719
.exe windows x86

572ccccfb2ba5470df1c3e94b7b26a64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
_adjust_fdiv
__set_app_type
_XcptFilter
malloc
_strnicmp
_exit
__p__fmode
__setusermatherr
fclose
_stricmp
_write
signal
strcpy
printf
_except_handler3
fread
free
atoi
remove
exit
strcmp
_acmdln
fflush
fwrite
fopen
fseek
_initterm
strlen
_onexit
__getmainargs

kernel32

FlushFileBuffers
ExitProcess
GetProcAddress
GetModuleHandleW
LoadLibraryA
MoveFileA
SetFileTime
OutputDebugStringA
GetSystemTimeAsFileTime
FreeEnvironmentStringsW

advapi32

RegOpenKeyA
RegCloseKey
OpenSCManagerW
OpenServiceW
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
SetSecurityDescriptorGroup
CheckTokenMembership
GetLengthSid
IsValidSid
SetSecurityDescriptorOwner

oleaut32

SafeArrayCreate
LoadTypeLib
GetActiveObject
VariantCopyInd
SysAllocStringByteLen
SysStringByteLen
SafeArrayGetElement

comctl32

DestroyPropertySheetPage
CreateStatusWindowA
ImageList_GetBkColor
ImageList_GetIcon
ImageList_Draw
CreatePropertySheetPageW
ImageList_LoadImageA
ImageList_Remove
InitCommonControlsEx
ImageList_Replace
ImageList_SetBkColor
PropertySheetW

user32

DrawIconEx
RemovePropA
IsWindowEnabled
GetClassNameA
RedrawWindow
GetSubMenu
ClientToScreen
GetActiveWindow
EndPaint
ScrollWindow
GetPropA
GetSystemMenu
GetLastActivePopup
SetPropA

gdi32

EnumEnhMetaFile
EnumFontFamiliesA
StartDocA
OffsetClipRgn
PolyDraw
EndPage
GetBitmapBits
RectInRegion
SetTextJustification
PatBlt

shell32

SHBrowseForFolderW
SHBrowseForFolderA
ShellExecuteEx
ShellExecuteExA
SHCreateDirectoryExA
Shell_NotifyIconW
ShellExecuteW
SHGetPathFromIDListA
FindExecutableW
SHGetSpecialFolderPathA

ole32

CoCreateGuid
StgCreateDocfileOnILockBytes
ReleaseStgMedium
CreateStreamOnHGlobal
CoDisconnectObject
StgOpenStorage

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

572ccccfb2ba5470df1c3e94b7b26a64

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

oleaut32

comctl32

user32

gdi32

shell32

ole32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 46KB - Virtual size: 63KB

.rsrc Size: 63KB - Virtual size: 91KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 46KB - Virtual size: 63KB

.rsrc
Size: 63KB - Virtual size: 91KB