92a24e8d73b5d7145dc3a135e6354b37e1acd6894adf75535f12221487aa14fe

Sharing

Copy URL Twitter E-mail

General

Target

92a24e8d73b5d7145dc3a135e6354b37e1acd6894adf75535f12221487aa14fe
Size

170KB
MD5

71e7cf9b49dee15768764a6dd3932eb8
SHA1

0cce105135c34a3d603e33e520d122027129d5d0
SHA256

92a24e8d73b5d7145dc3a135e6354b37e1acd6894adf75535f12221487aa14fe
SHA512

bb3a39f49c0e79de3832cdabad68cabb63be212d14e3241941df59b514a3463b5e04562306e384708e9617af80351c94217e2b857c01282d92a728244d15023c
SSDEEP

1536:xuLyd9yXKYjemJVPN25xzFCvd7A0jDoJ2dvMaaK9o4lp6s9Txwcy4J+OGEYKL7bc:xuae/JVPY59FCK8JuK9o4z1MC19Qwk3

Score

N/A

Malware Config

Signatures

Files

92a24e8d73b5d7145dc3a135e6354b37e1acd6894adf75535f12221487aa14fe
.exe windows x86

4133dc14a2cfa824ad4a0ed6f4533758

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUnmarshalInterface
StringFromIID
CoTaskMemFree
CLSIDFromProgID
CoRegisterClassObject
CreateOleAdviseHolder

comctl32

ImageList_DrawEx
ImageList_Read
ImageList_GetBkColor
ImageList_Add
ImageList_Write
ImageList_Draw
ImageList_Create
ImageList_DragShowNolock
ImageList_Remove

oleaut32

VariantChangeType

version

VerFindFileA
GetFileVersionInfoA
GetFileVersionInfoSizeA

comdlg32

GetSaveFileNameA
GetOpenFileNameA
FindTextA
FindTextA

gdi32

GetDIBColorTable
SetPixel
GetBitmapBits
CopyEnhMetaFileA
GetBitmapBits
BitBlt
CreateDIBSection
GetDIBits
CreateCompatibleDC
GetObjectA

user32

RegisterWindowMessageA
GetLastActivePopup
EnumChildWindows

msvcrt

pow
_acmdln
memmove
sqrt
cos
atan
wcscspn
abs
memcmp
wcstol

kernel32

GetProcAddress
LoadLibraryExA
LoadLibraryA
IsBadReadPtr
GetOEMCP
ExitThread
ExitProcess
VirtualAlloc
GetCommandLineA
GetACP
VirtualAllocEx
GetModuleHandleA
GetModuleHandleW

advapi32

RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCreateKeyA
RegEnumKeyExA

shell32

SHGetFolderPathA
SHGetFileInfoA
SHGetDesktopFolder
DragQueryFileA
SHGetDiskFreeSpaceA
SHGetFolderPathA

shlwapi

SHQueryInfoKeyA
PathIsDirectoryA
SHQueryValueExA
SHDeleteKeyA
SHSetValueA

Sections

.text
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 1024B - Virtual size: 783B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 225B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data3
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data7
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4133dc14a2cfa824ad4a0ed6f4533758

Headers

File Characteristics

Imports

ole32

comctl32

oleaut32

version

comdlg32

gdi32

user32

msvcrt

kernel32

advapi32

shell32

shlwapi

Sections

.text Size: 42KB - Virtual size: 41KB

DATA Size: 1024B - Virtual size: 783B

.data8 Size: 1KB - Virtual size: 1KB

.data2 Size: 512B - Virtual size: 225B

.data3 Size: 119KB - Virtual size: 118KB

.data7 Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 42KB - Virtual size: 41KB

DATA
Size: 1024B - Virtual size: 783B

.data8
Size: 1KB - Virtual size: 1KB

.data2
Size: 512B - Virtual size: 225B

.data3
Size: 119KB - Virtual size: 118KB

.data7
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB