ab6bed4d52f0e227cd27364e732728115cc1521ed63b3e1d5d809d896d411001

Sharing

Copy URL Twitter E-mail

General

Target

ab6bed4d52f0e227cd27364e732728115cc1521ed63b3e1d5d809d896d411001
Size

99KB
MD5

bfc28359e975e479afb205c76ab43027
SHA1

83cc9dcd32de98e6878601455848fa11f2efb32f
SHA256

ab6bed4d52f0e227cd27364e732728115cc1521ed63b3e1d5d809d896d411001
SHA512

011db8abab2c5531d82d07c6c10a82b208224dd58ebc1fc728c0f022b15dffbcfdbba4d33b23c4baac1e5132b166831d37c9d86f5dced134fb3388213ff11e2b
SSDEEP

1536:4uqxmA43GLRs6N/HtNiMRbglV+rIv1HZrZMsxp7/C65Nqr6BSCok38AV3wpZ:4LP43GLi8vtNiG07rvesThozNk31yZ

Score

N/A

Malware Config

Signatures

Files

ab6bed4d52f0e227cd27364e732728115cc1521ed63b3e1d5d809d896d411001
.exe windows x86

cfd1e6aaf8abdecfa32860bacc1bd66e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetStartupInfoA
LocalFree
GetUserDefaultLangID
VirtualProtect
MulDiv
GetModuleHandleA
GetFullPathNameA
GetPrivateProfileStringA
GetTickCount
WaitForSingleObject
CopyFileA
GetConsoleMode
GetCurrentProcessId

user32

GetMessageA
GetSysColor
GetClassInfoA
RemovePropA
GetMenuState
FindWindowA
LoadBitmapA

msvcrt

_controlfp
putchar
sqrt
strspn
__setusermatherr
_adjust_fdiv
__getmainargs
towupper
_initterm
memset
_except_handler3
_errno
exit
__set_app_type
_XcptFilter
_fdopen
__p__fmode
_ftol
__p__commode
_acmdln

advapi32

InitializeSecurityDescriptor
RegQueryValueA
RegEnumKeyA
OpenProcessToken
AllocateAndInitializeSid
OpenSCManagerW
CryptAcquireContextA
CryptReleaseContext
RegSetValueExW
FreeSid
EqualSid
RegCreateKeyA

ole32

RevokeDragDrop
IsAccelerator
CoReleaseMarshalData
StgOpenStorage
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes

oleaut32

SysAllocStringByteLen
SysStringLen
SysFreeString
LoadTypeLib
SafeArrayCreate
SysStringByteLen

comctl32

ImageList_LoadImageW
CreatePropertySheetPageA
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_Write
ImageList_Replace
ImageList_DragShowNolock
CreateStatusWindowA
CreateToolbarEx
ImageList_Draw
ImageList_LoadImageA

shell32

SHGetFolderPathW
SHChangeNotify
Shell_NotifyIconW
ShellExecuteEx
SHGetFolderLocation
ShellExecuteExA
ShellExecuteA
SHGetFolderPathA
SHGetSpecialFolderPathA

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cfd1e6aaf8abdecfa32860bacc1bd66e

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

advapi32

ole32

oleaut32

comctl32

shell32

Sections

.text Size: 69KB - Virtual size: 68KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 69KB - Virtual size: 68KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB