6c11f33f9e3b7b2de3ddb9a6255f03c6059f5c197d7c06cc2e32537f5e4a06a0

Sharing

Copy URL Twitter E-mail

General

Target

6c11f33f9e3b7b2de3ddb9a6255f03c6059f5c197d7c06cc2e32537f5e4a06a0
Size

104KB
MD5

0d55873c1b7957c83657d158307ffdb0
SHA1

b431dae55c6a5f3d16f34c01c47aa2d2bab407e3
SHA256

6c11f33f9e3b7b2de3ddb9a6255f03c6059f5c197d7c06cc2e32537f5e4a06a0
SHA512

16ebe257e2d670a0ebe295c169ea6ef05ee9aab5d0391ea04b962afe670151c0470153ddaa95260fcc48d1a325958e79b0b7d1a8ec7924d3c18d11fb07a9cba9
SSDEEP

1536:qvcyMCpRvUOMxwRIXFp0YAZz1fyUaV7B9Vch3VYqZOHR8Av10am:qvvMC3U/jF2JhEUOjEYQz

Score

N/A

Malware Config

Signatures

Files

6c11f33f9e3b7b2de3ddb9a6255f03c6059f5c197d7c06cc2e32537f5e4a06a0
.exe windows x86

5cb1c6f8948f1d6215c33c251aff4ea3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

free
_setmode
_exit
__getmainargs
_initterm
atoi
__p__commode
__p___initenv
_controlfp
getenv
fflush
calloc
fprintf
sinh
__setusermatherr
_XcptFilter
_snprintf
strcpy
realloc
__p__fmode
_iob
_adjust_fdiv
__set_app_type
_except_handler3
__dllonexit
exit

comdlg32

GetOpenFileNameA

kernel32

CompareStringA
Sleep
FileTimeToDosDateTime
DeviceIoControl
GetCurrentThreadId
MulDiv
CopyFileA
GlobalFree
GetDriveTypeA
GetStdHandle
GetNumberFormatA

user32

PostMessageA
GetWindowLongA
GetDC
RemovePropA
SetDlgItemTextA
GetCapture
OffsetRect
GetIconInfo
EnumWindows
DestroyCursor
RegisterClassA
LoadBitmapA
EndDialog
GetSubMenu

ole32

CoSetProxyBlanket
StringFromGUID2
IIDFromString
CoInitialize
OleUninitialize
CoTaskMemAlloc
CoCreateInstance
StringFromCLSID
RevokeDragDrop
StgOpenStorage
CoReleaseMarshalData
CoTaskMemRealloc
CoGetClassObject
DoDragDrop

gdi32

GetTextExtentPoint32A
GetRegionData
SetBrushOrgEx
StretchBlt
SetRectRgn
CreateDCA
GetTextCharsetInfo
GetWindowExtEx
GetTextMetricsA
SetTextCharacterExtra
InvertRgn
TranslateCharsetInfo
CreateRectRgnIndirect
DeleteDC

comctl32

ImageList_Create
ImageList_ReplaceIcon
PropertySheetA
CreateStatusWindowA
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_GetBkColor
ImageList_GetImageCount
InitCommonControlsEx
ImageList_LoadImageW
ImageList_SetBkColor

advapi32

CryptDestroyHash
CloseServiceHandle
RegSetValueExA
QueryServiceStatus
RegQueryInfoKeyA
RevertToSelf
RegDeleteValueW
RegDeleteValueA
GetTokenInformation
OpenThreadToken
DeleteService
GetLengthSid
RegFlushKey
RegOpenKeyW
RegEnumKeyW
RegCreateKeyExW
GetUserNameA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5cb1c6f8948f1d6215c33c251aff4ea3

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

ole32

gdi32

comctl32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 39KB

.rsrc Size: 29KB - Virtual size: 108KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 39KB

.rsrc
Size: 29KB - Virtual size: 108KB