e27f539534f72beb8c222c2db07c56573fc70df24cfdd24fc364fd1ee64f415e

General

Target

e27f539534f72beb8c222c2db07c56573fc70df24cfdd24fc364fd1ee64f415e
Size

120KB
MD5

96ff3684b3ebe337b075615e63452733
SHA1

4cf3ec0d6d2b81d6eeb2bf4e21359e82689fce2c
SHA256

e27f539534f72beb8c222c2db07c56573fc70df24cfdd24fc364fd1ee64f415e
SHA512

009b4a13e7b8d236584e5dd724696d78fe1c38200da6fb9a17bf4f4732fc3b0ec95b8ce116bce895b1bc04d3d57c16249323518ef1e6c41855f97f833679063d
SSDEEP

3072:KKnggI5cNoQaOK27WtinzZpcOh2HlJ8abESj02fFsrKODhBDYgL:Agocc27Wchh2Fl0GFsFhb

Score

N/A

Malware Config

Signatures

Files

e27f539534f72beb8c222c2db07c56573fc70df24cfdd24fc364fd1ee64f415e
.exe windows x86

39dab692e964cf3f45f1aa99318d6082

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
lstrcatA
GetStartupInfoA
GetConsoleOutputCP
GetModuleHandleA
FreeEnvironmentStringsW
lstrcmpiA

user32

GetSubMenu
GetActiveWindow
GetMenuState
CallNextHookEx
LoadCursorA
SetWindowTextA
GetSysColor
GetDesktopWindow
GetWindowTextA

msvcrt

log10
_adjust_fdiv
__p__fmode
strspn
_acmdln
_except_handler3
exit
localtime
_initterm
_getcwd
strtok
_XcptFilter
__p__commode
__setusermatherr
__getmainargs
_umask
towlower
__set_app_type
_amsg_exit

comctl32

ImageList_DragEnter
ImageList_SetOverlayImage
ImageList_Read
ImageList_LoadImageW
InitializeFlatSB
ImageList_Write
ImageList_GetImageInfo

advapi32

CryptReleaseContext
AllocateAndInitializeSid
RegQueryInfoKeyA
CryptAcquireContextA
RegEnumKeyW
RegQueryInfoKeyW
RegCreateKeyA
RegDeleteKeyA
RegQueryValueExA
CryptGenRandom
AdjustTokenPrivileges

version

VerInstallFileA
VerFindFileW
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoW
VerLanguageNameA

shell32

ExtractIconExW
SHBrowseForFolderW
Shell_NotifyIconW
SHAddToRecentDocs
DoEnvironmentSubstW
FindExecutableW

oleaut32

GetActiveObject
CreateErrorInfo
VariantCopy
SafeArrayCreate
SysFreeString
SafeArrayUnaccessData

ole32

OleRun
StgCreateDocfileOnILockBytes
ReleaseStgMedium
RegisterDragDrop

Sections

.text
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

39dab692e964cf3f45f1aa99318d6082

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

comctl32

advapi32

version

shell32

oleaut32

ole32

Sections

.text Size: 78KB - Virtual size: 78KB

.data Size: 15KB - Virtual size: 14KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 78KB - Virtual size: 78KB

.data
Size: 15KB - Virtual size: 14KB

.rsrc
Size: 25KB - Virtual size: 25KB