93f3f716ca9ead901aec8aeba9f5bb6339aea4a4b49e9e0f48cbd8d6fae881f4

Sharing

Copy URL Twitter E-mail

General

Target

93f3f716ca9ead901aec8aeba9f5bb6339aea4a4b49e9e0f48cbd8d6fae881f4
Size

218KB
MD5

dcbc9051c2f3c75b8bf41934ac11b2ac
SHA1

90174e9fafa92e40c2d2dc14d340c8fcfcff9f06
SHA256

93f3f716ca9ead901aec8aeba9f5bb6339aea4a4b49e9e0f48cbd8d6fae881f4
SHA512

ec12c48edd64801ac9490aa4b6bf5112d52c4abe2c6f9dbe2d23e8818d7083306c4a088f964fb9d1735da456eb725e6ec4069f8b8a6cf9c74f1eaa90b4b449bf
SSDEEP

3072:mQ/2mSNfr4fP/C7B9+Yo/nWhJwHAU2MKhdTD2yF0RODTTzFpvrRNTO:mQ/V0frg6T+LWXjDMydP2q0qhpvrO

Score

N/A

Malware Config

Signatures

Files

93f3f716ca9ead901aec8aeba9f5bb6339aea4a4b49e9e0f48cbd8d6fae881f4
.exe windows x86

98a092509a857ae89ee89314ec0f5a4c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExA
SetFileAttributesA
FindFirstFileA
RemoveDirectoryA
GetFileAttributesA
CreateProcessA
GetVersionExA
GetPrivateProfileStringA
GetLocalTime
CreateDirectoryA
GlobalAlloc
WritePrivateProfileStringA
WaitForSingleObject
FreeResource
SetErrorMode
lstrcatA
LoadLibraryA
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
GlobalUnlock
GlobalFree
SizeofResource
_lcreat
_lwrite
_lclose
WinExec
OpenFile
lstrcpynA
FileTimeToLocalFileTime
MultiByteToWideChar
GetFileTime
_lread
FileTimeToDosDateTime
_llseek
_lopen
GetDriveTypeA
GetSystemDirectoryA
MulDiv
lstrcmpA
lstrcmpiA
lstrcpyA
GetModuleFileNameA
lstrlenA
CopyFileA
GetTempPathA
GetTempFileNameA
LockResource
FindResourceA
LoadResource
GlobalLock
GetPrivateProfileIntA
DeleteFileA
FindNextFileA
FindClose
FreeEnvironmentStringsW
HeapReAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
VirtualAlloc
VirtualFree
HeapCreate
ExitProcess
HeapDestroy
GetEnvironmentVariableA
ReadFile
SetFilePointer
WriteFile
GetStdHandle
SetHandleCount
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WideCharToMultiByte
GetCurrentProcess
TerminateProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapFree
HeapAlloc
MoveFileA
CreateFileA
GetFileType
SetEndOfFile
CloseHandle
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
GetOEMCP
GetCPInfo
GetACP

user32

UpdateWindow
RegisterClassA
LoadBitmapA
ShowWindow
LoadIconA
SetTimer
PeekMessageA
TranslateMessage
DdeUninitialize
GetSystemMetrics
SetWindowTextA
GetMessageA
ExitWindowsEx
GetSysColor
LoadCursorA
SetCursor
EnableWindow
IsWindowVisible
CreateDialogParamA
IsDialogMessageA
wsprintfA
PostMessageA
MessageBoxA
CreateWindowExA
EndPaint
PostQuitMessage
GetClientRect
BeginPaint
ReleaseDC
InvalidateRect
GetDC
DefWindowProcA
MoveWindow
GetWindowRect
SetDlgItemTextA
EndDialog
GetDlgItemTextA
SetRect
ScreenToClient
GetDlgItem
GetWindowTextA
SendDlgItemMessageA
SetFocus
OemToCharA
CharNextA
GetDialogBaseUnits
FillRect
DrawIcon
LoadStringA
GetParent
EnumChildWindows
FindWindowA
SendMessageA
DdeCreateDataHandle
DdeInitializeA
DdeConnect
DdeClientTransaction
DdeGetData
DdeDisconnect
DestroyWindow
DispatchMessageA
DialogBoxParamA
KillTimer
DdeFreeDataHandle
DdeCreateStringHandleA

gdi32

GetStockObject
TextOutA
SetTextColor
GetTextExtentPointA
CreateFontA
GetDeviceCaps
SetBkMode
BitBlt
CreateCompatibleDC
DeleteDC
CreateSolidBrush
SelectObject
PatBlt
SelectPalette
ExtTextOutA
RealizePalette
MoveToEx
CreatePen
SetBkColor
CreateFontIndirectA
StretchBlt
LineTo
CreateDIBitmap
CreatePalette
CreateCompatibleBitmap
DeleteObject
GetObjectA

comdlg32

GetOpenFileNameA

advapi32

RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
CloseServiceHandle
OpenSCManagerA
RegSetValueA
RegSetValueExA
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
RegDeleteValueA
RegEnumKeyA
RegOpenKeyA
DeleteService
ControlService
OpenServiceA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Exports

Exports

_ItemDlg@16
_MainWndProc@16
_PromptDlg@16
_SharedDlg@16

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 13KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.erdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

98a092509a857ae89ee89314ec0f5a4c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

Exports

Exports

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 13KB - Virtual size: 15KB

.rsrc Size: 74KB - Virtual size: 73KB

.erdata Size: 60KB - Virtual size: 60KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 13KB - Virtual size: 15KB

.rsrc
Size: 74KB - Virtual size: 73KB

.erdata
Size: 60KB - Virtual size: 60KB