b8c1ed9f5c30f7fe14e24d361e0401ef662af75ee812b8ee2f4f6979d22e7ed6

Sharing

Copy URL Twitter E-mail

General

Target

b8c1ed9f5c30f7fe14e24d361e0401ef662af75ee812b8ee2f4f6979d22e7ed6
Size

98KB
MD5

0dca310b23196d590dae9b04cbc5bb0c
SHA1

d49349aa387c8c1e2f97082c6115b92b47b5692e
SHA256

b8c1ed9f5c30f7fe14e24d361e0401ef662af75ee812b8ee2f4f6979d22e7ed6
SHA512

dd207dfd964c0591aa24dfa66b0073a40e68869e6920eccdfb40d163ef4ce85aa9b41df51ba2a28946e99f70bdbce0a015f452c705660357a3d37d91ff2d56ef
SSDEEP

1536:VHavk6g7iJNXMMFaTD7OoapzKyZQs8gYAtDQ1fg96jorklLKQHxh:VOfg7u5x2KoawyZd8gYmDQljMgbRh

Score

N/A

Malware Config

Signatures

Files

b8c1ed9f5c30f7fe14e24d361e0401ef662af75ee812b8ee2f4f6979d22e7ed6
.exe windows x86

709924df265d5386237de75c3a122595

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetStringTypeExA
lstrcpyA
UnhandledExceptionFilter
GetNumberFormatA
GetLocaleInfoA
DeleteFileW
GetCommandLineW
GetSystemTimeAsFileTime
GetModuleHandleA
SetLastError
WaitForSingleObject
WritePrivateProfileStringA
GetSystemDirectoryW
GetCurrentThreadId
CompareStringA

msvcrt

fread
_initterm
__setusermatherr
_XcptFilter
_onexit
__set_app_type
_except_handler3
sinh
memset
strncmp
malloc
_exit
fopen
calloc
free
_strnicmp
exit
__getmainargs
fprintf
_adjust_fdiv
_controlfp
__p__fmode
__p__commode
__p___initenv

comdlg32

GetOpenFileNameA

user32

GetFocus
SetDlgItemTextA
GetWindowPlacement
GetWindowLongA
EmptyClipboard
GetMenu
GetSysColorBrush
InvalidateRect
GetClassNameA
InflateRect
UnregisterClassA
MapWindowPoints
DrawEdge
SetWindowLongA
GetActiveWindow
SetMenu
CreateWindowExA
DestroyIcon
SetCapture
MessageBeep
FillRect

ole32

CreateStreamOnHGlobal
CoTaskMemFree
CoDisconnectObject
CreateBindCtx
CoInitializeEx
StringFromIID
CoTaskMemAlloc
CoInitializeSecurity

advapi32

RegDeleteValueA
CryptGenRandom
IsValidSid
OpenProcessToken
OpenSCManagerA
RegQueryValueA
RegFlushKey
QueryServiceStatus
DeleteService
CryptAcquireContextA
RegCloseKey
SetSecurityDescriptorGroup
RegEnumKeyW

comctl32

ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_SetDragCursorImage
ImageList_SetImageCount
ImageList_SetIconSize
ImageList_GetBkColor
ImageList_LoadImageA

gdi32

GetBrushOrgEx
GetEnhMetaFileDescriptionA
StartDocW
SetEnhMetaFileBits
EndDoc
GetTextExtentPointW
GetDIBColorTable
DeleteObject
SetWindowOrgEx
ExtCreatePen
SaveDC
GetObjectType
CreateDIBSection
GetRegionData

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

709924df265d5386237de75c3a122595

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

ole32

advapi32

comctl32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 30KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 30KB - Virtual size: 30KB