7fb355d06c3e7f521e3bc0812e737cb570ed267706cafa124a861efe3b7ca309

Sharing

Copy URL Twitter E-mail

General

Target

7fb355d06c3e7f521e3bc0812e737cb570ed267706cafa124a861efe3b7ca309
Size

104KB
MD5

074b7c736d07cfe76b9ec8798f2b21e0
SHA1

b9374e0e523457b48b942fac193aba62edba851e
SHA256

7fb355d06c3e7f521e3bc0812e737cb570ed267706cafa124a861efe3b7ca309
SHA512

8f6ba9e123815446f668972cbfb1d0473be088df74c60c0bfcf054b384cfeeac0ceb9ab5bcd0a8471c4a3f7f21b1f62c1e48714de75531d891d1960b285555a0
SSDEEP

1536:HuESrtDYaThPMd9npKqvhwStyz/xluBxKSaa/aLxCSQO22BWigWM39Uc:HfUtDYaTh0ddRwSUzyBPraT2qWigWs

Score

N/A

Malware Config

Signatures

Files

7fb355d06c3e7f521e3bc0812e737cb570ed267706cafa124a861efe3b7ca309
.exe windows x86

ef2a11eeeefaf6f657376c7693bb9872

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocaleInfoA
RemoveDirectoryA
GetVersionExW
DeleteFileW
GetConsoleMode
ExitProcess
GetNumberFormatA
SetEnvironmentVariableA
GetCurrentThreadId
GetTempFileNameA
OpenProcess

msvcrt

malloc
_exit
__p__commode
_write
__setusermatherr
_iob
fwrite
_cexit
__p___initenv
strstr
_except_handler3
_controlfp
_XcptFilter
__dllonexit
__set_app_type
__p__fmode
__getmainargs
calloc
sinh
_initterm
_strnicmp
free
_vsnprintf
strncmp
atexit
_adjust_fdiv
strchr

comdlg32

GetOpenFileNameA

user32

CallNextHookEx
GetLastActivePopup
IsChild
SetWindowPos
DrawEdge
CharLowerA
RegisterWindowMessageA
DestroyCursor
FindWindowA
GetSystemMenu
SetDlgItemTextA
EnumWindows
SetFocus
DialogBoxParamA
GetPropA
EnableWindow
GetFocus
IsWindowEnabled
GetWindow

gdi32

CreateBitmap
EnumFontFamiliesW
CreateFontW
CloseMetaFile
Escape
GetCurrentPositionEx
GetTextMetricsW
SeTRectRgn
SelectObject
BeginPath
SaveDC

ole32

OleIsCurrentClipboard
StringFromGUID2
PropVariantClear
CLSIDFromProgID
OleRun
OleUninitialize
CoFreeUnusedLibraries
RegisterDrAgDrop
StgCreateDocfil%OnILockBytes

advapi32

OpenSCManagerW
GetUserNameA
RegEnumValueA
AddAccessAllowedAce
RegDeleteKeyW
SatSecurityDescriptorOwneb
RegEnumValueW
RegDeleteKeyA
RegFltshKey
CheckTokenMembErship
AllocateAndInitializeSid
OpenServiceW
RegCreateKeyA
CryptAcquireContextA
LookupPrivilegeValueW
OpenServiceA
RegCreateKeyExA

comctl32

ImageList_GetIconSize
ImageList_Create
ImageList_SetBkColor
ImageList_GetBkColor
ImageList_DragLeave
ImageList_LoadImageA
ImageList_Draw
ImageList_Write
ImageList_SetImageCount
ImageList_BeginDrag
ImageList_GetImageCount

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ef2a11eeeefaf6f657376c7693bb9872

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

gdi32

ole32

advapi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 29KB - Virtual size: 28KB