1d82c4e8703d5ac07ff49c52504a5ad4d2f01b880a05aea53c8db9ccde764f34

Sharing

Copy URL Twitter E-mail

General

Target

1d82c4e8703d5ac07ff49c52504a5ad4d2f01b880a05aea53c8db9ccde764f34
Size

331KB
MD5

c07d91191f5ee035ee20661585e87ec9
SHA1

c86fe66eb835b61e29ce53f8ddfaed11349d9ec7
SHA256

1d82c4e8703d5ac07ff49c52504a5ad4d2f01b880a05aea53c8db9ccde764f34
SHA512

82c504e5a2eb1d7aaa559060e6e5f78419b4ec78b257af4308fb26d8ce504e9aeffe679b57a348693d122e368b35bacc20931b96ae03918e8907ae147e60c235
SSDEEP

6144:o0mJoyVgRzH732OHZg5a0KNzFnlQOjkZBB22KIykM3uo:oZoyV6zH7+8FnKOjkZX3K

Score

N/A

Malware Config

Signatures

Files

1d82c4e8703d5ac07ff49c52504a5ad4d2f01b880a05aea53c8db9ccde764f34
.exe windows x86

8490bd71dc1c6eba8473622d66dcd09b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
WaitForSingleObject
GetExitCodeProcess
CreateFileA
GetStringTypeW
SetEnvironmentVariableA
HeapReAlloc
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
CreateFileW
CompareStringW
HeapSize
IsProcessorFeaturePresent
ReadFile
SetEndOfFile
GetProcessHeap
CloseHandle
GetLastError
HeapCreate
IsBadReadPtr
GetCurrentProcess
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
LCMapStringW
HeapAlloc
LoadLibraryW
SetFilePointer
MultiByteToWideChar
WriteConsoleW
RtlUnwind
GetFileAttributesA
GetModuleFileNameW
DuplicateHandle
HeapFree
EnterCriticalSection
LeaveCriticalSection
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
SetHandleCount
GetStdHandle
DeleteCriticalSection
Sleep
EncodePointer
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
FlushFileBuffers
RaiseException

user32

IsWindow
AppendMenuA
GetSystemMetrics
EndDialog
SetClassLongA
ReleaseDC
InvalidateRect
FindWindowA
SendMessageW
DialogBoxParamA
GetSysColor
GetSystemMenu
LoadStringA
GetParent
LoadMenuA
LoadIconA
IsWindowEnabled
GetClientRect
GetDC
IntersectRect

gdi32

SetTextColor
GdiFlush
SetBkColor

comdlg32

GetOpenFileNameW

advapi32

RegCloseKey
RegQueryValueExW
RegSetValueW
RegCreateKeyExW

shell32

SHChangeNotify

shlwapi

SHCreateStreamOnFileW

comctl32

ImageList_Draw

gdiplus

GdipFree
GdipDeletePen
GdipDeleteGraphics
GdipDrawImageRectI
GdipLoadImageFromFile
GdipAlloc
GdipDisposeImage
GdipCreateFromHDC
GdipCloneImage
GdipDrawLineI
GdipCreatePen1

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8490bd71dc1c6eba8473622d66dcd09b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

comctl32

gdiplus

Sections

.text Size: 177KB - Virtual size: 177KB

.rdata Size: 145KB - Virtual size: 144KB

.data Size: 6KB - Virtual size: 18KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 177KB - Virtual size: 177KB

.rdata
Size: 145KB - Virtual size: 144KB

.data
Size: 6KB - Virtual size: 18KB

.rsrc
Size: 1KB - Virtual size: 1KB