cbdcba77ddecb0a2111a8aef2e6f47d9df49b5953819eda23d7cab3420ddcfb3

Sharing

Copy URL

Twitter E-mail

General

Target

cbdcba77ddecb0a2111a8aef2e6f47d9df49b5953819eda23d7cab3420ddcfb3
Size

331KB
MD5

e37b899055596e97b5ce15c6815e3d2e
SHA1

8a58df88edd277731687860f77897cddad4b341a
SHA256

cbdcba77ddecb0a2111a8aef2e6f47d9df49b5953819eda23d7cab3420ddcfb3
SHA512

a5a36fcf65f5e12ac474c5474046b52399dde84b4a6d0d0a6ac7937f334180b244668efce8da580a2132f0d01e60f7a39161cbe37f2d7f4a387d717e605d0a7e
SSDEEP

3072:9pDS7Xba3zCFQovNCAHlbg4dQFiF6TE9gXvHTZqJypGuto:KDbaDJovNCAHlzQFi6Sqh

Score

N/A

Malware Config

Signatures

Files

cbdcba77ddecb0a2111a8aef2e6f47d9df49b5953819eda23d7cab3420ddcfb3
.exe windows x86

e8c08364631e183d85272f03ea20dba4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFile
ExtractIconExA
ExtractIconExW
FindExecutableW
SHAppBarMessage
SHGetMalloc
SHGetSpecialFolderPathA
ShellExecuteW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_GetImageCount
ImageList_LoadImageW
ImageList_Replace
ImageList_SetImageCount
PropertySheetA

user32

CloseClipboard
DispatchMessageA
EndPaint
FillRect
GetClassInfoA
GetClientRect
GetDC
IsChild
LoadBitmapA
MapWindowPoints
PostQuitMessage
PtInRect
RegisterClipboardFormatA
ReleaseDC
ScrollWindow
SetScrollRange
UpdateWindow

advapi32

CopySid
GetTokenInformation
InitializeSecurityDescriptor
InitiateSystemShutdownA
OpenServiceW
RegCreateKeyExA
RegDeleteValueA
RegDeleteValueW
RegEnumKeyA
RegEnumKeyExA
RegEnumKeyExW
RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegQueryInfoKeyA
RegQueryValueA
RegQueryValueExA
RevertToSelf
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup

kernel32

ExitThread
FileTimeToDosDateTime
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetCommandLineW
GetEnvironmentStrings
GetExitCodeProcess
GetFileSize
GetLocaleInfoW
GetThreadLocale
GetUserDefaultLCID
InterlockedCompareExchange
LocalFree
MultiByteToWideChar
SetCurrentDirectoryA
SetLastError
SetStdHandle
TlsAlloc
WaitForMultipleObjects

gdi32

ArcTo
CreateBitmap
CreateEllipticRgn
EnumFontFamiliesExW
ExtSelectClipRgn
FillPath
GetBkMode
GetDIBits
GetSystemPaletteEntries
GetTextMetricsA
PlayMetaFile
PolyBezierTo
Polyline
SetViewportExtEx
UnrealizeObject

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

3iEm5H3k
Size: 120KB - Virtual size: 192KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e8c08364631e183d85272f03ea20dba4

Headers

File Characteristics

Imports

shell32

comctl32

user32

advapi32

kernel32

gdi32

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 100KB - Virtual size: 99KB

.rsrc Size: 18KB - Virtual size: 17KB

3iEm5H3k Size: 120KB - Virtual size: 192KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 18KB - Virtual size: 17KB

3iEm5H3k
Size: 120KB - Virtual size: 192KB