825ceed9b562fc779c311b543be09104b3da4e01c6063adc80c068d2057a9dec

Sharing

Copy URL Twitter E-mail

General

Target

825ceed9b562fc779c311b543be09104b3da4e01c6063adc80c068d2057a9dec
Size

94KB
MD5

139845c718591c5bd90a716655386799
SHA1

6a6c9498cd8219f950d6b3bcc6993fdcdd9c9873
SHA256

825ceed9b562fc779c311b543be09104b3da4e01c6063adc80c068d2057a9dec
SHA512

dac433fd51589d5582f0e8ef065a6a1bfb581e51286769c8542aa00bbbe1d702c702f1da346096c78a9a9af9c60ad119edf7b8093470a985472d658a3ec3b1db
SSDEEP

1536:OZ9Qm5M3LJL27DfArDLlXNR4OHbl1p4ezwkkfHlfsQSBQbT8CgEuDue:W9Qd27DcXz4OHB1WezL6HlrSBQwuuD

Score

N/A

Malware Config

Signatures

Files

825ceed9b562fc779c311b543be09104b3da4e01c6063adc80c068d2057a9dec
.exe windows x86

6c731667766053257a8ffd4b5ea76714

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcmp
_adjust_fdiv
_except_handler3
_exit
strcpy
printf
_XcptFilter
free
fwrite
__p__fmode
__setusermatherr
calloc
__getmainargs
__set_app_type
atoi
_acmdln
_onexit
_initterm
exit
__p__commode

kernel32

FreeEnvironmentStringsW
CompareStringW
DisableThreadLibraryCalls
QueryPerformanceCounter
VirtualProtectEx
LoadLibraryExW
GetProcAddress
GetModuleHandleW
VirtualAlloc

user32

CreateWindowExA
GetWindowThreadProcessId
DestroyWindow
GetWindowPlacement
SendMessageA
CheckMenuItem
GetMessageA
GetDesktopWindow
AdjustWindowRectEx

gdi32

GetRegionData
CreateBrushIndirect
GetTextFaceW
PtInRegion
CreateMetaFileW
GetWinMetaFileBits
GetObjectW

ole32

StringFromGUID2
CoInitializeSecurity
StringFromCLSID

advapi32

InitiateSystemShutdownA
RegEnumValueW
OpenThreadToken
RegDeleteKeyW
CryptDestroyHash
RegQueryInfoKeyW

shell32

DragQueryFileW
ShellExecuteEx
SHFileOperationA

comctl32

InitializeFlatSB
ImageList_SetImageCount
ImageList_Add
ImageList_DragShowNolock
ImageList_EndDrag
ImageList_Write

oleaut32

SafeArrayPutElement

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6c731667766053257a8ffd4b5ea76714

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

ole32

advapi32

shell32

comctl32

oleaut32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 37KB - Virtual size: 63KB

.rsrc Size: 52KB - Virtual size: 109KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 37KB - Virtual size: 63KB

.rsrc
Size: 52KB - Virtual size: 109KB