89c6d2011f6d90d6efc54e86b7ef39d4114421813adaae29f7dfcbfd5a243afb

Sharing

Copy URL

Twitter E-mail

General

Target

89c6d2011f6d90d6efc54e86b7ef39d4114421813adaae29f7dfcbfd5a243afb
Size

98KB
MD5

d5540b519bf7fc3532a929ae4135154f
SHA1

7c5fd29f8183fbcf003d9da8e6dde26be2caca1b
SHA256

89c6d2011f6d90d6efc54e86b7ef39d4114421813adaae29f7dfcbfd5a243afb
SHA512

9c7bda9eb6c3350f2daf59a819cdab3b42bd1bde0a1eb2dd1aca262656ac5c99d1f5838b7d77f937291555d44458f77052fcf06ffaf5f7919960b46a4cd10c28
SSDEEP

1536:8klgA+JDngGwcljJPeKhhJUdnpcGUwkH0CJeUjrtWHLEg0KfVIuk:ZlT+J73fpJPeEhOpctwgjrtWHLrVVk

Score

N/A

Malware Config

Signatures

Files

89c6d2011f6d90d6efc54e86b7ef39d4114421813adaae29f7dfcbfd5a243afb
.exe windows x86

ea532f2e55a69a1f7f2a8b93f4c3c026

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteValueA
SHDeleteKeyA
PathFileExistsA
SHGetValueA
PathGetCharTypeA
SHQueryInfoKeyA
SHStrDupA
PathIsContentTypeA
SHSetValueA

ole32

OleRun
CoDisconnectObject
WriteClassStm
OleRegGetUserType
CoReleaseMarshalData
CoRevokeClassObject
CLSIDFromString
CreateStreamOnHGlobal
CoCreateInstanceEx

advapi32

RegCreateKeyExA
RegLoadKeyA
RegOpenKeyExA
RegDeleteKeyA

user32

DrawMenuBar
RegisterClassA
GetWindow
DispatchMessageA
DrawEdge
SetWindowTextA
GetDesktopWindow
ClientToScreen
GetMessagePos
GetMenuItemID
GetSubMenu
HideCaret
IsChild
CharToOemA
CharLowerA
GetSysColor
SystemParametersInfoA
CharNextA
GetDC
GetScrollInfo
EnumChildWindows
GetScrollPos
GetKeyState
GetCursor
DrawTextA
FindWindowA
CreatePopupMenu
CreateMenu
CreateWindowExA
DrawIcon
GetSysColorBrush
GetMenuStringA
IsDialogMessageA
SetTimer
DefMDIChildProcA
GetMenuItemInfoA
MessageBoxA
BeginPaint
EnableWindow
GetForegroundWindow
IsMenu
DeferWindowPos
CheckMenuItem
GetLastActivePopup
EnableMenuItem
BeginDeferWindowPos
GetClassLongA
CharLowerBuffA
GetKeyNameTextA
GetMenuItemCount
GetCursorPos
GetPropA

shell32

SHFileOperationA
Shell_NotifyIconA
SHGetFileInfoA
SHGetFolderPathA
SHGetDesktopFolder

kernel32

GetOEMCP
ResetEvent
GetCurrentThreadId
VirtualAlloc
GetModuleHandleA
LoadLibraryExA
LoadLibraryA
GetACP
Sleep
ExitThread

comdlg32

ChooseColorA

gdi32

GetPixel
CreateDIBitmap
CreateBrushIndirect
GetDCOrgEx
GetBitmapBits
CreateCompatibleBitmap
SetTextColor
SetBkMode
RestoreDC
CreateBitmap
GetObjectA

oleaut32

SafeArrayGetUBound
SysAllocStringLen
RegisterTypeLib
SysFreeString
SafeArrayPtrOfIndex

comctl32

ImageList_Add
ImageList_Destroy
ImageList_DragShowNolock
ImageList_Remove
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Read
ImageList_Write
ImageList_Create

msvcrt

strncmp
memmove
sin

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoA

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ea532f2e55a69a1f7f2a8b93f4c3c026

Headers

File Characteristics

Imports

shlwapi

ole32

advapi32

user32

shell32

kernel32

comdlg32

gdi32

oleaut32

comctl32

msvcrt

version

Sections

.text Size: 50KB - Virtual size: 49KB

DATA Size: 4KB - Virtual size: 3KB

.tls Size: 43KB - Virtual size: 43KB

.text
Size: 50KB - Virtual size: 49KB

DATA
Size: 4KB - Virtual size: 3KB

.tls
Size: 43KB - Virtual size: 43KB