d712cf036f3464e44b36380017a3c67e0fd9bb91d5146fc7b0b8c451df39d9ea

Sharing

Copy URL

Twitter E-mail

General

Target

d712cf036f3464e44b36380017a3c67e0fd9bb91d5146fc7b0b8c451df39d9ea
Size

173KB
MD5

6b9fabff602568e3e17b51ca591052ff
SHA1

75c2b2125279ea1fee697cd79781d47496626a50
SHA256

d712cf036f3464e44b36380017a3c67e0fd9bb91d5146fc7b0b8c451df39d9ea
SHA512

2717756a5774971127ecbaf9cdbad790ba5316540cf0c59b19202b36b4956bee6c1bb1caa30f89112092e60d746a1be2dd269a8a931a5e59e6260499c3cc92b0
SSDEEP

3072:LPXHYvIhFtLUEpAD5tt63fxZus8Q7qrTVkicWIVcNAaTNTaue9HCaMHhSctMYOu:bp6G5AocvLXN7mZH3X87Bvy8pQg7NM

Score

N/A

Malware Config

Signatures

Files

d712cf036f3464e44b36380017a3c67e0fd9bb91d5146fc7b0b8c451df39d9ea
.exe windows x86

b04c09560a6f22a123191550d8fd9323

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
FindTextA
GetFileTitleA
GetSaveFileNameA

oleaut32

GetErrorInfo
RegisterTypeLib
SysAllocStringLen
SysFreeString
SafeArrayGetElement
SafeArrayPtrOfIndex
VariantCopyInd
VariantChangeType

kernel32

GetThreadLocale
GetModuleHandleA
LoadLibraryA
VirtualAlloc
LoadLibraryExA

user32

GetMenuState
GetKeyState
GetDC
CharToOemA
DrawTextA
GetSubMenu
DispatchMessageA
GetLastActivePopup
GetDCEx
IsWindowVisible
MessageBoxA
GetDesktopWindow
GetPropA
EnumChildWindows
EndDeferWindowPos
CharLowerA
GetKeyNameTextA
GetWindow
CreatePopupMenu
EnumThreadWindows
GetMessagePos
CreateIcon
FrameRect
EnumWindows
GetWindowTextA
GetScrollInfo
DefWindowProcA
EndPaint
CheckMenuItem
SetTimer
DeferWindowPos
TrackPopupMenu
ShowWindow
GetClassLongA
CharLowerBuffA
CharNextA
EnableScrollBar
FillRect
SetWindowLongA
CreateMenu
GetMenu
GetClipboardData
IsChild
GetCapture
CreateWindowExA
GetMenuItemID
DrawIcon
GetMenuStringA
GetCursor
GetSysColor
IsMenu
GetSysColorBrush
GetMenuItemCount
GetMenuItemInfoA
DispatchMessageW
IsDialogMessageA
EqualRect
GetIconInfo
GetParent
BeginDeferWindowPos
GetForegroundWindow

comctl32

ImageList_Destroy
ImageList_Remove

shlwapi

SHEnumValueA

shell32

SHFileOperationA

ole32

CoGetContextToken
GetHGlobalFromStream
PropVariantClear
CoUnmarshalInterface
CoFreeUnusedLibraries
CoGetMalloc
MkParseDisplayName
OleCreateStaticFromData
CoReleaseMarshalData

version

VerInstallFileA

advapi32

RegDeleteValueA
RegOpenKeyExA
RegEnumKeyA

msvcrt

sqrt
mbstowcs
log10
swprintf
strlen
strncmp
memcpy
memset

Sections

CODE
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init
Size: 1024B - Virtual size: 629B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 297B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b04c09560a6f22a123191550d8fd9323

Headers

File Characteristics

Imports

comdlg32

oleaut32

kernel32

user32

comctl32

shlwapi

shell32

ole32

version

advapi32

msvcrt

Sections

CODE Size: 54KB - Virtual size: 53KB

.rdata Size: 3KB - Virtual size: 79KB

.tls Size: 112KB - Virtual size: 112KB

.init Size: 1024B - Virtual size: 629B

BSS Size: 512B - Virtual size: 297B

CODE
Size: 54KB - Virtual size: 53KB

.rdata
Size: 3KB - Virtual size: 79KB

.tls
Size: 112KB - Virtual size: 112KB

.init
Size: 1024B - Virtual size: 629B

BSS
Size: 512B - Virtual size: 297B