b3b228dd8ecc7502737d49a5a6ff9629dc9ab8894a6264bc2e8ce156d421ffad

Sharing

Copy URL Twitter E-mail

General

Target

b3b228dd8ecc7502737d49a5a6ff9629dc9ab8894a6264bc2e8ce156d421ffad
Size

87KB
MD5

4532adad707752a481964be55029f3af
SHA1

0d45203b970e696a4849b74daaef0e412b4f1900
SHA256

b3b228dd8ecc7502737d49a5a6ff9629dc9ab8894a6264bc2e8ce156d421ffad
SHA512

81578b20ce9406acfd04e23372a6bd8041908d5b49f62837c7f5365c1c42593b8c47437947715926909afe2d3bf8331e33970d1fbeb82141a85203ac78ca40eb
SSDEEP

1536:JhIRT5JFXsdXq9xfvb+YElKjla6NcTAE+bjMaEIFwBwrxNQUvzweJL9y7ujDR:zIRT5EdQVJMK5vZ/Miw74PW7iDR

Score

N/A

Malware Config

Signatures

Files

b3b228dd8ecc7502737d49a5a6ff9629dc9ab8894a6264bc2e8ce156d421ffad
.exe windows x86

1c4308299f8f8cbd1d27ca3b0f7d5a39

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLangID
GetACP
GetFullPathNameA
GetLastError
GetSystemDirectoryW
FreeEnvironmentStringsA
TerminateProcess
GetStringTypeW
lstrcmpiW
GetLocaleInfoW
IsDBCSLeadByte
GetSystemDefaultLCID
GetProcAddress
LCMapStringW
GetStartupInfoA
VirtualProtectEx
GetTickCount
GetProcessHeap
lstrcmpA
FileTimeToSystemTime
GetCommandLineW
GetModuleHandleW
GetDiskFreeSpaceA

msvcrt

__p__fmode
_controlfp
_adjust_fdiv
memmove
fwrite
_except_handler3
_XcptFilter
_initterm
free
_exit
_strnicmp
_write
__setusermatherr
__p__commode
_setmode
__p___initenv
_iob
__set_app_type
__getmainargs
atoi
_onexit
calloc
_vsnprintf
strchr

gdi32

DPtoLP
CombineRgn
CreateHatchBrush
ExtEscape
SetDIBits
GetTextExtentPoint32A
EnumFontFamiliesExA
GetTextMetricsW
SetWinMetaFileBits
LineDDA
CreateICW

advapi32

LookupPrivilegeValueW
RegQueryInfoKeyA
InitializeAcl
RegEnumKeyW
RegEnumKeyExA
GetSecurityDescriptorDacl
ControlService
SetSecurityDescriptorDacl
RegSetValueExW
RegFlushKey
AddAccessAllowedAce
RegSetValueExA

comctl32

ImageList_DragEnter
ImageList_GetImageCount
InitCommonControls
ImageList_GetIconSize
ImageList_SetIconSize
CreateToolbarEx

ole32

CLSIDFromString
CoCreateGuid
CoInitialize
CreateStreamOnHGlobal
CoTaskMemFree
CoInitializeEx
CoGetInterfaceAndReleaseStream
CoRegisterClassObject
IsEqualGUID
CoGetClassObject
CreateItemMoniker
CoRegisterMessageFilter
CoTaskMemAlloc

user32

SendMessageA
GetDlgItem
UnhookWindowsHookEx
DefWindowProcA
GetFocus
SetWindowLongA
DrawTextA
MessageBoxA
DestroyIcon
GetCursorPos
DispatchMessageA
SetActiveWindow
InflateRect

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c4308299f8f8cbd1d27ca3b0f7d5a39

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

advapi32

comctl32

ole32

user32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 62KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 62KB

.rsrc
Size: 6KB - Virtual size: 6KB