95f50cf7d0f12e09064f11675bc19f8054e32435b810c9d10b461e4df65fedf7

Sharing

Copy URL Twitter E-mail

General

Target

95f50cf7d0f12e09064f11675bc19f8054e32435b810c9d10b461e4df65fedf7
Size

43KB
MD5

5da0639f3e98ed2c5c850b150dcbfb20
SHA1

c0052a898695209529967122e912191b366d6b75
SHA256

95f50cf7d0f12e09064f11675bc19f8054e32435b810c9d10b461e4df65fedf7
SHA512

6fcfca4226f4cb99179d2acd653a7de41116afb6bff054698b87ec4b789769dfb20090f14f1c8aa515283b74ab2662ab5af16afa1a8ccda20cb7a8cf7c11297d
SSDEEP

768:F5XbSpa2PuY6nucLnJv3+fy1NxLsRDFaf/Tbj20Fp9m+Mgp:F5XbSpzPF6ucLQMVwwf7G0Fp9m+9p

Score

N/A

Malware Config

Signatures

Files

95f50cf7d0f12e09064f11675bc19f8054e32435b810c9d10b461e4df65fedf7
.exe windows x86

3a0657dd310c0183215c56db28720943

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
memcpy
fseek
ftell
fread
sprintf
fabs
ceil
malloc
floor
free
fclose
strlen
strcpy
strncpy
strcat
_stricmp
_CIpow
_CIatan2

kernel32

GetModuleHandleA
HeapCreate
HeapDestroy
ExitProcess
HeapFree
HeapAlloc
HeapReAlloc
GetProcAddress
FreeLibrary
LoadLibraryA
InitializeCriticalSection
TlsAlloc
GetVersionExA
GetCurrentProcessId
GetCurrentThreadId
CloseHandle
CreateFileA
SetFilePointer
SetEndOfFile
WriteFile
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
Sleep

user32

GetPropA
RemovePropA
FillRect
GetIconInfo
DrawStateA
GetParent
GetClientRect
SendMessageA
InvalidateRect
CallWindowProcA
SetPropA
SetWindowLongA
DestroyWindow
ShowWindow
IsZoomed
GetWindowLongA
MoveWindow
ShowCursor
BeginPaint
EndPaint
DefWindowProcA
LoadIconA
RegisterClassExA
CreateWindowExA
ClipCursor
GetWindowRect
SetCursorPos
GetWindow
SetActiveWindow
UnregisterClassA
DestroyAcceleratorTable
LoadCursorA
DestroyIcon
GetForegroundWindow
GetWindowThreadProcessId
IsWindowVisible
IsWindowEnabled
EnableWindow
EnumWindows
SetWindowPos

gdi32

GetObjectType
GetObjectA
DeleteObject
IntersectClipRect
GetStockObject
CreateCompatibleDC
GetDIBits
DeleteDC
CreateDIBSection
SelectObject
BitBlt
CreateBitmap
SetPixel

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

CreateStatusWindowA
InitCommonControlsEx

winmm

timeEndPeriod

ole32

RevokeDragDrop
CoInitialize

Sections

.code
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 863B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3a0657dd310c0183215c56db28720943

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

comdlg32

comctl32

winmm

ole32

Sections

.code Size: 8KB - Virtual size: 7KB

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 1024B - Virtual size: 863B

.data Size: 3KB - Virtual size: 5KB

.code
Size: 8KB - Virtual size: 7KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 1024B - Virtual size: 863B

.data
Size: 3KB - Virtual size: 5KB