b36fafbb85e96ce501849b5fbad7ad5fc2c2f7a9e4ab8dddd3a06f9ac43f5a9e

Sharing

Copy URL

Twitter E-mail

General

Target

b36fafbb85e96ce501849b5fbad7ad5fc2c2f7a9e4ab8dddd3a06f9ac43f5a9e
Size

179KB
MD5

a47d221c39b1d428c2136d14d678f0a3
SHA1

83e5026e6905d50540b46583d261ea7d9f4b96a1
SHA256

b36fafbb85e96ce501849b5fbad7ad5fc2c2f7a9e4ab8dddd3a06f9ac43f5a9e
SHA512

63084b89d048192c131d37dea33a8afc22394301e13343c7cb8cead6616588f64877317d382a5536a12c02e67ea3a89e27d2193f3edd698f9b85ac93ac7ba030
SSDEEP

3072:tkLDacPIcabTes7HlRUl73fapEnVejNjbz9eg9G3fWmjFbtZTokQoWXfX9kbIU9P:tkLLPOZ7UxCp1Njbz9e44fWSH8XfX9kL

Score

N/A

Malware Config

Signatures

Files

b36fafbb85e96ce501849b5fbad7ad5fc2c2f7a9e4ab8dddd3a06f9ac43f5a9e
.exe windows x86

67fe81e13fb6cf10e6647e2405da6fa8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CreateDirectoryA
CreateEventW
CreateFileA
CreateFileW
CreateProcessA
CreateProcessW
DeviceIoControl
EnterCriticalSection
FileTimeToDosDateTime
FileTimeToSystemTime
FindClose
FindFirstFileW
FindNextFileA
FindNextFileW
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetCommandLineW
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcess
GetDateFormatA
GetEnvironmentStrings
GetExitCodeThread
GetFileSize
GetFileTime
GetFileType
GetLocaleInfoA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleW
GetOEMCP
GetStartupInfoW
GetStdHandle
GetStringTypeExA
GetTempPathW
GetThreadLocale
GetTickCount
GetVersion
GetWindowsDirectoryA
GlobalAddAtomA
GlobalDeleteAtom
GlobalReAlloc
GlobalUnlock
HeapAlloc
InterlockedCompareExchange
InterlockedExchange
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
IsDBCSLeadByte
IsDebuggerPresent
IsValidCodePage
LoadLibraryExA
LocalFileTimeToFileTime
LockResource
ResetEvent
SetCurrentDirectoryA
SetErrorMode
SetEvent
SetFileAttributesW
SetFilePointer
SetHandleCount
SetThreadLocale
SetUnhandledExceptionFilter
SystemTimeToFileTime
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
lstrcatA
lstrcmpA
lstrcmpiA
lstrlenA

user32

AdjustWindowRectEx
CallWindowProcA
CharLowerA
CheckMenuItem
ClientToScreen
CloseClipboard
CreatePopupMenu
DeleteMenu
DestroyMenu
DestroyWindow
DrawTextA
EnableMenuItem
EndPaint
EnumThreadWindows
EnumWindows
GetClientRect
GetDCEx
GetDesktopWindow
GetMenu
GetMenuItemCount
GetMenuStringA
GetMessageA
GetMessagePos
GetPropA
GetSystemMenu
GetTopWindow
GetWindowTextA
InsertMenuA
InvalidateRect
IsWindow
KillTimer
LoadCursorA
LoadStringA
PeekMessageA
PtInRect
RedrawWindow
ScreenToClient
SetActiveWindow
SetClassLongA
SetScrollInfo
SetScrollPos
SetWindowPos
SetWindowTextA
UpdateWindow
wsprintfA

gdi32

AbortDoc
ArcTo
CreateBitmap
CreateDCA
CreateEllipticRgn
CreateICA
CreateICW
CreateRectRgnIndirect
DeleteMetaFile
Ellipse
EndDoc
EnumFontsA
Escape
ExtEscape
GetCharWidthW
GetEnhMetaFileDescriptionA
GetObjectA
GetTextColor
GetTextExtentPoint32W
GetTextFaceA
GetWindowExtEx
OffsetRgn
PlayMetaFileRecord
RemoveFontResourceA
RestoreDC
SetROP2
SetTextAlign
SetTextColor
SetWorldTransform
StretchBlt

shell32

CommandLineToArgvW
DoEnvironmentSubstW
DragFinish
DragQueryFile
SHAddToRecentDocs
SHAppBarMessage
SHBrowseForFolderA
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExW
SHFileOperationA
SHFileOperationW
SHGetFolderLocation
SHGetFolderPathA
SHGetSettings
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
ShellExecuteExW

comctl32

CreatePropertySheetPageA
CreatePropertySheetPageW
CreateStatusWindowA
CreateToolbarEx
DestroyPropertySheetPage
ImageList_Add
ImageList_AddMasked
ImageList_BeginDrag
ImageList_Create
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_GetBkColor
ImageList_GetDragImage
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_Read
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Write
InitCommonControls
InitCommonControlsEx
InitializeFlatSB
PropertySheetA
PropertySheetW

advapi32

AdjustTokenPrivileges
CloseServiceHandle
ConvertStringSecurityDescriptorToSecurityDescriptorW
CopySid
DeleteService
EqualSid
FreeSid
GetTokenInformation
GetUserNameA
InitializeAcl
InitiateSystemShutdownA
OpenProcessToken
OpenSCManagerA
OpenServiceW
OpenThreadToken
QueryServiceStatus
RegCreateKeyA
RegDeleteValueA
RegEnumKeyExW
RegOpenKeyA
RegOpenKeyExA
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegSetValueExA
RegSetValueExW
RevertToSelf
SetSecurityDescriptorDacl

ole32

CoDisconnectObject
CoGetClassObject
CoInitializeSecurity
CoReleaseMarshalData
CoRevokeClassObject
CoTaskMemRealloc
CoUninitialize
GetRunningObjectTable
IIDFromString
IsAccelerator
ProgIDFromCLSID
RegisterDragDrop
RevokeDragDrop
StringFromIID

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

67fe81e13fb6cf10e6647e2405da6fa8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

comctl32

advapi32

ole32

Sections

.text Size: 67KB - Virtual size: 67KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 77KB - Virtual size: 77KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 67KB - Virtual size: 67KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 77KB - Virtual size: 77KB

.rsrc
Size: 26KB - Virtual size: 28KB