81f03e59650e82c84f52a1986c0e640cae7e631c2b1709003bc9faa0e7a22cdd

Sharing

Copy URL Twitter E-mail

General

Target

81f03e59650e82c84f52a1986c0e640cae7e631c2b1709003bc9faa0e7a22cdd
Size

249KB
MD5

7a51f0d8d09de0aeceaf818919fac57b
SHA1

78675a6f41c2481cfc270307c9c9ba52d248cea2
SHA256

81f03e59650e82c84f52a1986c0e640cae7e631c2b1709003bc9faa0e7a22cdd
SHA512

d19586414279ed4e3749cbe253790a679f8004f6a84dd3648e268358f42ca5bb60ac0fc581f95b9573cae6ac475b90cb3ffa9ffc89be18fa5ec89fbb3eb319c4
SSDEEP

6144:c9U6cFn7/VlH1W5nlVhppdsMjxnyrioy65d:ERcFn7tlVc7ssxyr9d

Score

N/A

Malware Config

Signatures

Files

81f03e59650e82c84f52a1986c0e640cae7e631c2b1709003bc9faa0e7a22cdd
.exe windows x86

5ba3477ae09eeb3e25e5fc3e409b2196

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcmp
memcpy
sqrt
atol
swprintf
sprintf
calloc
memset
exp
log10
mbstowcs

version

VerInstallFileA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

MoveFileExA
GetACP
InitializeCriticalSection
LockResource
GetStdHandle
ExitThread
SizeofResource
GetVersionExA
GetDiskFreeSpaceA
LocalAlloc
lstrcpynA
SetFilePointer
VirtualFree
GetVersion
GetCurrentThread
lstrcmpiA
VirtualAllocEx
GlobalDeleteAtom
SetErrorMode
GetModuleFileNameA
SetEndOfFile
LoadResource
GetModuleHandleA
ExitProcess
GetStringTypeW
lstrcmpA
CreateEventA
LoadLibraryExA
LoadLibraryA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA

advapi32

RegCreateKeyA
RegOpenKeyA
RegDeleteValueA
RegOpenKeyExA

comctl32

ImageList_DragShowNolock
ImageList_Draw
ImageList_Add

gdi32

GetBitmapBits
CreateDIBitmap
SetBkMode
GetRgnBox
GetCurrentPositionEx
SetTextColor

user32

GetMenuState
GetMenuStringA
GetForegroundWindow
GetActiveWindow
EnableScrollBar
CreateIcon
GetClientRect
IsChild
GetParent
GetFocus
DispatchMessageW
GetSysColor
CharNextA
GetLastActivePopup
EnumChildWindows
GetClipboardData
GetDC
HideCaret
CallWindowProcA
EnableWindow
IsWindowEnabled
IsWindowVisible
CreateMenu
GetCursorPos
GetCapture
GetCursor
EqualRect

Sections

CODE
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 512B - Virtual size: 51B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 113B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5ba3477ae09eeb3e25e5fc3e409b2196

Headers

File Characteristics

Imports

msvcrt

version

kernel32

comdlg32

advapi32

comctl32

gdi32

user32

Sections

CODE Size: 37KB - Virtual size: 37KB

.idata Size: 207KB - Virtual size: 207KB

.init Size: 512B - Virtual size: 51B

.rdata Size: 1KB - Virtual size: 1KB

.bss Size: 512B - Virtual size: 113B

CODE
Size: 37KB - Virtual size: 37KB

.idata
Size: 207KB - Virtual size: 207KB

.init
Size: 512B - Virtual size: 51B

.rdata
Size: 1KB - Virtual size: 1KB

.bss
Size: 512B - Virtual size: 113B