246d01ec15770a325680b7a1ae87b2a8fd2b452667cff188c68effbb7ffff57b

Sharing

Copy URL Twitter E-mail

General

Target

246d01ec15770a325680b7a1ae87b2a8fd2b452667cff188c68effbb7ffff57b
Size

91KB
MD5

65be8650d25ecd73090e15cfdd280b55
SHA1

09e96af130f6fce493264d8086fec7f9409f99ff
SHA256

246d01ec15770a325680b7a1ae87b2a8fd2b452667cff188c68effbb7ffff57b
SHA512

3a3d226c7e0b33261389486627b0116027be98f351028143e6b156d414186669a475c2b2ce4b8cc424f609487af1f0f686591fa830dd4636de24b7f958a04fce
SSDEEP

1536:KiXawoELn5eEvotBPr9Q5xS8CvgzokfXzyGX3NmWzkaSMOvJ+qbicZYX+n2BG1Sm:KUawoocFTaTcIkeXz/NmWTjOvJHvn8Gf

Score

N/A

Malware Config

Signatures

Files

246d01ec15770a325680b7a1ae87b2a8fd2b452667cff188c68effbb7ffff57b
.exe windows x86

1426c6726f6b75fb3c296a6718013bae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

calloc
memset
_cexit
_adjust_fdiv
__set_app_type
exit
free
fclose
fflush
_initterm
_errno
__setusermatherr
_except_handler3
__p__commode
sqrt
strcpy
__getmainargs
__p__fmode
_acmdln
_iob
_exit
sprintf

kernel32

GetStartupInfoA
FileTimeToSystemTime
lstrcmpA
ReadFile
CreateFileMappingA
GetCurrentProcessId
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
GetVersion
GetModuleHandleW
VirtualProtect
FreeLibrary
lstrcpyA

comctl32

ImageList_Replace
ImageList_BeginDrag
ImageList_Remove
InitCommonControls
ImageList_AddMasked
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_SetOverlayImage
ImageList_EndDrag
ImageList_DragLeave

gdi32

Pie
SetStretchBltMode
ExtCreatePen
CreateDCW
SelectObject
CreatePolygonRgn
PlayMetaFile
SetMapMode
CreateHatchBrush
SetPolyFillMode
PlayEnhMetaFile
GetTextExtentPointW
UnrealizeObject
SetMapperFlags
CopyMetaFileW

advapi32

RegQueryValueA
DeleteService
SetSecurityDescriptorOwner
CryptCreateHash
LookupPrivilegeValueA
AllocateAndInitializeSid
SetSecurityDescriptorGroup
RegCreateKeyExW
CryptHashData
RegCloseKey
CryptAcquireContextA
RegOpenKeyExA
RegDeleteKeyW

ole32

CoUninitialize
IsEqualGUID
CoInitializeSecurity
OleSetMenuDescriptor
CoRegisterClassObject
CoGetInterfaceAndReleaseStream
IsAccelerator
CoInitializeEx
CoTaskMemRealloc
CoReleaseMarshalData
CoCreateInstance
CreateBindCtx
CoGetClassObject

user32

ReleaseCapture
SetWindowPlacement
SetScrollRange
IsWindow
IsChild
GetIconInfo
RegisterClipboardFormatA
DrawTextA

oleaut32

SetErrorInfo
SysAllocStringLen
SysStringByteLen
GetActiveObject
SysAllocStringByteLen
SafeArrayUnaccessData
VariantInit
GetErrorInfo
SafeArrayPtrOfIndex

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1426c6726f6b75fb3c296a6718013bae

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

gdi32

advapi32

ole32

user32

oleaut32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 63KB - Virtual size: 63KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 63KB - Virtual size: 63KB

.rsrc
Size: 3KB - Virtual size: 2KB