10c9ea147de4f1e53ff2e792c3b5a5c8a8efc170a23a6a288254fa79eed8c78d

General

Target

10c9ea147de4f1e53ff2e792c3b5a5c8a8efc170a23a6a288254fa79eed8c78d
Size

60KB
MD5

f186ad431f582e3aa6fdab1feae038af
SHA1

b641fd1f136c9b5ea92812696f028c075d47a45a
SHA256

10c9ea147de4f1e53ff2e792c3b5a5c8a8efc170a23a6a288254fa79eed8c78d
SHA512

245d6ccaf2154903a08293042688c64b5d4f3bb3e09a3872995fae0ba1369a9fae4614ad79a0a1c75461470150a8a879cf9a89ef69244ab21c6dfa8cf41fa3d7
SSDEEP

768:MpzGf+Gf8X4FZW4JgyYDTkiooN0/IDslWgXLe0kmKWUBcZ8Loqh36ZJqfXM4UFIz:MpzGf+U8bHDTkiA/8oLe02BcUH6FI7/

Score

N/A

Malware Config

Signatures

Files

10c9ea147de4f1e53ff2e792c3b5a5c8a8efc170a23a6a288254fa79eed8c78d
.exe windows x86

febd3e2705b74eb1a4dae1ae15950c6d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetPrivateProfileSectionA
GetCurrentDirectoryA
GetModuleFileNameA
GetEnvironmentVariableA
LoadLibraryA
FindResourceA
MoveFileA
FindResourceA
FormatMessageA
GetComputerNameA
GetCPInfo
VirtualQuery
DisconnectNamedPipe
IsBadStringPtrA
QueryDosDeviceA
EncodeSystemPointer
IsBadCodePtr
GetConsoleAliasA
HeapCreate

crypt32

CertCloseStore
CertGetNameStringA
CertCreateContext
CertFindCRLInStore
CertControlStore
CertCompareCertificate
CertAlgIdToOID
CertFreeCRLContext
CertNameToStrA
CertFindAttribute
CertDuplicateCRLContext

dsprop

CheckADsError
ReportError
FindSheet
MsgBox
ErrMsg

clbcatq

SetupOpen
DllGetClassObject

ntshrui

GetLocalPathFromNetResourceA
IsPathSharedA
IsFolderPrivateForUser
GetNetResourceFromLocalPathA
IsPathSharedW

uxtheme

GetThemeTextExtent
CloseThemeData
GetThemeSysSize
SetWindowTheme
GetThemeTextMetrics
GetThemeBool

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

febd3e2705b74eb1a4dae1ae15950c6d

Headers

File Characteristics

Imports

kernel32

crypt32

dsprop

clbcatq

ntshrui

uxtheme

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 964B

.rsrc Size: 46KB - Virtual size: 46KB

.reloc Size: 512B - Virtual size: 10B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 964B

.rsrc
Size: 46KB - Virtual size: 46KB

.reloc
Size: 512B - Virtual size: 10B