86dae89a50f2123ead50269147233457277ce0633430e4a6e3b011b8ce915ed0

Sharing

Copy URL Twitter E-mail

General

Target

86dae89a50f2123ead50269147233457277ce0633430e4a6e3b011b8ce915ed0
Size

154KB
MD5

cc14fc6ae82b2b950c98230114b78eaa
SHA1

10fa3341412672f93f871762bab506e41056fc7d
SHA256

86dae89a50f2123ead50269147233457277ce0633430e4a6e3b011b8ce915ed0
SHA512

63547966249469ce93231d6693a9137bd17cf8ba529abed2b2bf7e8944ddab6c8496fa1ab492b0a61ef0e8ae4bcbe963d79b91a6ba984f500c064b607e226a6d
SSDEEP

3072:RPEHtYfIQetKRrGGv4pWsrp8WhZZu+xzJocvMWAsJSbCsJbguRaipqRK7tw:3gQfcW+puOJoNWAdusJbNR/Jw

Score

N/A

Malware Config

Signatures

Files

86dae89a50f2123ead50269147233457277ce0633430e4a6e3b011b8ce915ed0
.exe windows x86

26d99840131767a195b971fada491113

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetDateFormatA
EnumCalendarInfoA
GlobalLock
GetModuleHandleA
RaiseException
SetCurrentDirectoryA
VirtualProtect
GetLastError
OpenProcess
GetStringTypeExA
GetEnvironmentStrings
LocalFree
GetFileType
SetFileAttributesW
GetStartupInfoA

msvcrt

_XcptFilter
__set_app_type
wcsncmp
exit
realloc
__p__commode
_except_handler3
_getcwd
isxdigit
_exit
_unlock
_stat
_adjust_fdiv
_acmdln
fgetc
__getmainargs
srand
__setusermatherr
__p__fmode
atof
log10
_initterm
_controlfp

ole32

OleGetClipboard
IIDFromString
CreateBindCtx
CoLoadLibrary
ProgIDFromCLSID
StringFromIID
OleSetMenuDescriptor
CoRegisterMessageFilter

gdi32

EnumFontFamiliesExA
Ellipse
GetWindowOrgEx
SetRectRgn
SetMetaFileBitsEx
EndPath
EndPage
SetMapperFlags
GetTextMetricsW

advapi32

RegQueryValueExA
RegEnumKeyExA
IsValidSid
OpenServiceA
GetTokenInformation
RegEnumValueA
CryptAcquireContextA
SetSecurityDescriptorGroup
RevertToSelf
CopySid
DeleteService

version

VerInstallFileW
GetFileVersionInfoW
VerInstallFileA
VerQueryValueW
VerQueryValueA
VerLanguageNameA
GetFileVersionInfoSizeA

shell32

DragQueryFileA
SHBrowseForFolderA
ExtractIconW
CommandLineToArgvW
ExtractAssociatedIconW
SHBindToParent
ShellExecuteExW
SHGetFolderPathW
SHGetFolderLocation
FindExecutableW
SHGetMalloc

comctl32

ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_GetBkColor
ImageList_Draw
ImageList_DrawEx
ImageList_Write
PropertySheetW
CreateToolbarEx

user32

EnumThreadWindows
IsWindowEnabled
GetSystemMetrics
MapWindowPoints
EnumWindows
WinHelpA

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysFreeString
CreateErrorInfo

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26d99840131767a195b971fada491113

Headers

File Characteristics

Imports

kernel32

msvcrt

ole32

gdi32

advapi32

version

shell32

comctl32

user32

oleaut32

Sections

.text Size: 18KB - Virtual size: 17KB

.data Size: 18KB - Virtual size: 39KB

.rsrc Size: 117KB - Virtual size: 116KB

.text
Size: 18KB - Virtual size: 17KB

.data
Size: 18KB - Virtual size: 39KB

.rsrc
Size: 117KB - Virtual size: 116KB