ae15911785f8e52396e7271f041a39a74a6ee6d9c936b5491a3deb0727d918f3

General

Target

ae15911785f8e52396e7271f041a39a74a6ee6d9c936b5491a3deb0727d918f3
Size

104KB
MD5

a490e65467a956d1936b5d68908ec305
SHA1

d2b94ca72407d9da40084859fc7d6bd9d57d122f
SHA256

ae15911785f8e52396e7271f041a39a74a6ee6d9c936b5491a3deb0727d918f3
SHA512

8ce75d66499df0d9687da434a4db9b7bf20a9c8826992d253145fe5a8701875d41280211291c1f94e506c7daa72bde2487bfe58a857a3ef89d550068bacced13
SSDEEP

1536:I7Id6rd7GWqRh7IN02VocElZsyHbmhwoXVEVkSXKkanjz2Q6/H4IigWfzW:I7Icrppqr/267lZNHiXIk1Vp6/HWx

Score

N/A

Malware Config

Signatures

Files

ae15911785f8e52396e7271f041a39a74a6ee6d9c936b5491a3deb0727d918f3
.exe windows x86

903ee296a9fabbac5302f2a04d04a65e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__fmode
_acmdln
free
__set_app_type
strcmp
calloc
_adjust_fdiv
printf
_exit
exit
_except_handler3
__setusermatherr
strcpy
_cexit
abort
strrchr
realloc
__getmainargs
_initterm
atexit
__p__commode
_XcptFilter

kernel32

CreateFileMappingA
GetStringTypeExA
VirtualProtectEx
GlobalLock
GetModuleHandleW
LoadLibraryExW
GetProcAddress

gdi32

BitBlt
Escape
CreateRectRgnIndirect
DeleteObject
CreateDIBPatternBrushPt
SetArcDirection

shell32

DragQueryFileW
SHCreateDirectoryExA
SHBindToParent
Shell_NotifyIconW
CommandLineToArgvW

ole32

RevokeDragDrop
OleFlushClipboard
GetRunningObjectTable
CreateBindCtx
CoGetClassObject
CoDisconnectObject
CoTaskMemRealloc

comctl32

ImageList_LoadImageA
ImageList_Replace
ImageList_LoadImageW

advapi32

CopySid
OpenServiceW
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyA
CryptReleaseContext
AllocateAndInitializeSid

oleaut32

GetActiveObject
SafeArrayRedim
SysAllocStringLen

user32

RedrawWindow
BeginPaint
ShowWindow
ClientToScreen
ScrollWindow

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

903ee296a9fabbac5302f2a04d04a65e

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

shell32

ole32

comctl32

advapi32

oleaut32

user32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 40KB - Virtual size: 62KB

.rsrc Size: 58KB - Virtual size: 58KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 40KB - Virtual size: 62KB

.rsrc
Size: 58KB - Virtual size: 58KB