5e32a2bd672000a7b84f830b110d85a25f00a9d094046aef525a3bd07b880a06

Sharing

Copy URL Twitter E-mail

General

Target

5e32a2bd672000a7b84f830b110d85a25f00a9d094046aef525a3bd07b880a06
Size

98KB
MD5

74e40579b340c99c2fd142cbc8a8fb7c
SHA1

02026d8ff71e643f6348791f9a3416bf67191d93
SHA256

5e32a2bd672000a7b84f830b110d85a25f00a9d094046aef525a3bd07b880a06
SHA512

cbd4ebcf972394aae3c75760ba3a2eeb375622efc9cb2edf7a990bcf8a3298d3d848549ef49752799ade6deecd55833d48645319c9ae73c301ce5c3258783fe8
SSDEEP

1536:u5mdhbjBusdnRnhpdqMbpA0gOUp2aS05EcoOKrydmXnR5btv57vzqse+DIa:u4hbYsdnVhTFgrW0KpnRFt5zqXcN

Score

N/A

Malware Config

Signatures

Files

5e32a2bd672000a7b84f830b110d85a25f00a9d094046aef525a3bd07b880a06
.exe windows x86

df805effbe8863d18684efdadaae2248

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_controlfp
fprintf
_initterm
_XcptFilter
calloc
__getmainargs
wcslen
strchr
signal
fflush
_exit
__set_app_type
__setusermatherr
__p__fmode
sinh
_except_handler3
__p___initenv
__p__commode
strrchr
_adjust_fdiv

comdlg32

GetOpenFileNameA

kernel32

RemoveDirectoryA
GetSystemInfo
VirtualQuery
LCMapStringA
GetNumberFormatA
GetTimeZoneInformation
MultiByteToWideChar
GetDiskFreeSpaceA
VirtualFree
GlobalReAlloc
GetVersionExA
GetCurrentThreadId
LocalFree
GlobalLock
EnumCalendarInfoA

user32

IsDialogMessageA
IsWindowVisible
AdjustWindowRectEx
GetMenu
RemovePropA
GetForegroundWindow
SetClipboardData
ScreenToClient
DrawIconEx
IntersectRect
GetWindowRect
GetDC
LoadBitmapA
SetDlgItemTextA
DefWindowProcA
ShowOwnedPopups

comctl32

ImageList_GetBkColor
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_EndDrag
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_BeginDrag
CreateToolbarEx
ImageList_Remove
InitCommonControlsEx
ImageList_Destroy
ImageList_DragShowNolock
CreatePropertySheetPageW
ImageList_Draw
ImageList_GetIcon

ole32

CoRegisterClassObject
CoRevokeClassObject
IsAccelerator
CoInitializeEx
CoTaskMemFree
CoInitialize
GetRunningObjectTable
OleDraw
CoDisconnectObject
PropVariantClear
OleInitialize
OleSetClipboard
ReleaseStgMedium
StgOpenStorageOnILockBytes

gdi32

SetDIBitsToDevice
EndPage
IntersectClipRect
GetCurrentObject
GetCharacterPlacementA
ExtSelectClipRgn
StrokePath
BitBlt
EnumEnhMetaFile
GetClipBox
GetOutlineTextMetricsA
SetTextColor
PlayEnhMetaFile
GetClipRgn

advapi32

SetSecurityDescriptorDacl
AddAccessAllowedAce
SetSecurityDescriptorGroup
RegOpenKeyExW
RegFlushKey
CheckTokenMembership
LookupPrivilegeValueW
RegSetValueExA
RegSetValueExW
RegCreateKeyExA
GetLengthSid
RegCloseKey
CopySid

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df805effbe8863d18684efdadaae2248

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

ole32

gdi32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 29KB - Virtual size: 28KB