923b44d8b456dcc633202d8e3d6bfcf5071e2a0e3d3dd85859360e3c26e58b93

Sharing

Copy URL Twitter E-mail

General

Target

923b44d8b456dcc633202d8e3d6bfcf5071e2a0e3d3dd85859360e3c26e58b93
Size

96KB
MD5

8324344d1c80bad90352fee74ad0bd9a
SHA1

17d5e3f47d2e79253c0647990b7fc9ea5b0136b4
SHA256

923b44d8b456dcc633202d8e3d6bfcf5071e2a0e3d3dd85859360e3c26e58b93
SHA512

db30adb70980f1f9447396327a3576249c73fdf049f3017058e1aa2a72506832742f92f78baa72788d885576826c6818a1cef85ca5d84c83f42b025deb6bc67a
SSDEEP

3072:A5oCW+I32EPrN7OBn00HGc8CxmfIlQ4J7vx:A++IBh00cRufIQg

Score

N/A

Malware Config

Signatures

Files

923b44d8b456dcc633202d8e3d6bfcf5071e2a0e3d3dd85859360e3c26e58b93
.exe windows x86

c21d9373d3d2f16885af8e7611683c6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
__dllonexit
strchr
fread
_XcptFilter
_errno
_except_handler3
__set_app_type
__p__commode
memset
__p__environ
_stricmp
_initterm
__p__fmode
strncpy
atoi
__setusermatherr
__p___initenv
__getmainargs
_exit
free
calloc
_adjust_fdiv
wcslen
sinh
_cexit
atexit
fprintf
strstr

comdlg32

GetOpenFileNameA

kernel32

GetPrivateProfileStringA
GetEnvironmentStringsW
RemoveDirectoryA
CreateProcessA
GetLastError
LocalFileTimeToFileTime
RaiseException
DuplicateHandle
GetThreadLocale
GetNumberFormatA
GetModuleHandleW
VirtualQuery
GetCurrentThreadId
QueryPerformanceCounter
FileTimeToDosDateTime
EnumCalendarInfoA

user32

GetSystemMetrics
SetDlgItemTextA
GetParent
EndDialog
InsertMenuA
GetWindowRect
IsWindowVisible
SetFocus
UnregisterClassA
AdjustWindowRectEx
GetCapture

comctl32

ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_Create
ImageList_GetImageInfo
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_SetDragCursorImage
DestroyPropertySheetPage
ImageList_LoadImageW
ImageList_Read
ImageList_Write
InitializeFlatSB
CreateToolbarEx

advapi32

InitializeSecurityDescriptor
RegQueryInfoKeyW
SetSecurityDescriptorOwner
CryptReleaseContext
RegCreateKeyExA
FreeSid
OpenSCManagerA
AllocateAndInitializeSid
RegEnumKeyW
SetSecurityDescriptorDacl
InitiateSystemShutdownA
RegCloseKey
AddAccessAllowedAce

ole32

CreateStreamOnHGlobal
OleRun
CoInitializeEx
OleUninitialize
OleSetMenuDescriptor
OleInitialize
RegisterDragDrop

gdi32

GetBrushOrgEx
TextOutW
GetTextExtentPointA
PlayEnhMetaFile
GetTextMetricsW
GetClipBox
SetWindowExtEx
CreateEnhMetaFileA
ExtSelectClipRgn
PatBlt
SetMapMode
SetViewportExtEx
CreateFontA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c21d9373d3d2f16885af8e7611683c6d

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

advapi32

ole32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 29KB - Virtual size: 28KB