94c1acc974aa2bce7662f392ffbbceddde9f0a773cc4fe70d237a3cab40f2241

Sharing

Copy URL Twitter E-mail

General

Target

94c1acc974aa2bce7662f392ffbbceddde9f0a773cc4fe70d237a3cab40f2241
Size

99KB
MD5

e3e7d8ffec8b73bcd01909559c011ee9
SHA1

a53993e80dbdd4f0eb347a592cd831bcbc6debd9
SHA256

94c1acc974aa2bce7662f392ffbbceddde9f0a773cc4fe70d237a3cab40f2241
SHA512

00ba3551853b1c5d26e9d8e9b0c4c9d6b264d23d836120e87a7df839e6641e7a38a28ebdb9883ee0208ec38a88fe21a900c12479b9954f45e7567c5de51070d9
SSDEEP

1536:M2EZLkghwi/tTIJmeNeutE/cu5awpgf7J3z912OgQSQSrDAM3mXHVq:rchvTIHNNtnu5awpgf734iSQSwMO

Score

N/A

Malware Config

Signatures

Files

94c1acc974aa2bce7662f392ffbbceddde9f0a773cc4fe70d237a3cab40f2241
.exe windows x86

346995c6c036d8abb0074229f7834491

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atoi
__p__commode
__setusermatherr
calloc
printf
strcmp
strlen
_acmdln
__set_app_type
exit
_XcptFilter
__p__fmode
free
strncmp
_adjust_fdiv
_except_handler3
__getmainargs
_exit
_initterm
strchr

kernel32

GetConsoleOutputCP
GetModuleHandleW
SetEnvironmentVariableA
CopyFileA
LoadLibraryExW
GetCommandLineA
CreateProcessA
GlobalReAlloc
GetFileTime
MultiByteToWideChar
VirtualProtectEx
ExitProcess
GetProcAddress

gdi32

LPtoDP
GetBitmapBits
GetCurrentPositionEx
CreateFontIndirectA

oleaut32

GetErrorInfo
SysAllocStringByteLen
SafeArrayCreate
SysAllocStringLen
LoadTypeLib
SafeArrayPtrOfIndex
GetActiveObject

shell32

SHGetPathFromIDList
ShellExecuteEx
SHGetDiskFreeSpaceExW
FindExecutableW
SHCreateDirectoryExW
SHBindToParent
SHGetPathFromIDListW

user32

AdjustWindowRectEx
ShowWindow
RemoveMenu
GetMenuItemID

comctl32

ImageList_Remove
ImageList_GetBkColor
PropertySheetW
ImageList_GetImageCount
ImageList_SetIconSize

advapi32

SetSecurityDescriptorGroup
RegEnumValueA
CryptReleaseContext
CryptCreateHash
CheckTokenMembership
CryptDestroyHash

ole32

StringFromIID
CoLoadLibrary

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

346995c6c036d8abb0074229f7834491

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

oleaut32

shell32

user32

comctl32

advapi32

ole32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 37KB - Virtual size: 62KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 37KB - Virtual size: 62KB

.rsrc
Size: 56KB - Virtual size: 55KB