83687f46a29c235aaf31087cba92968d2c466f7a919353605c018c601299e1da

Sharing

Copy URL

Twitter E-mail

General

Target

83687f46a29c235aaf31087cba92968d2c466f7a919353605c018c601299e1da
Size

111KB
MD5

30115ef02200e8c1d58d4397b9b1d8c0
SHA1

1b3eae3a21d6130c72a13b89053e1eaf40595e26
SHA256

83687f46a29c235aaf31087cba92968d2c466f7a919353605c018c601299e1da
SHA512

af5c24887c3f498a712158215ccac780e8b9a0963f414ebb7dfb39507a21790b8f69ae53e5623483ff49569ccdeb3c452502a51dd49d3aa7483b187d048879d2
SSDEEP

1536:mlxkjB+T+YM9FCxnZdNpphJ22yt0xqNY2Iuch2DGpHs2OeP3+wMhP5GJiDGw:dAK+ZdHs2yfK2IjhQ2O9LFDDGw

Score

N/A

Malware Config

Signatures

Files

83687f46a29c235aaf31087cba92968d2c466f7a919353605c018c601299e1da
.exe windows x86

d6174346b04e778a227971c98137cc93

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
DeleteFileW
ReadConsoleA
CopyFileW
ExitThread
CreateProcessA
FindFirstFileA
GetCommandLineA
GetCPInfo
GetFileTime
GetStdHandle
CopyFileExW
OpenFile
DeleteAtom
FindAtomA
GlobalFree
GetComputerNameA
Sleep
CreateDirectoryA

gdi32

GetDCOrgEx
AddFontResourceExA
GetBrushOrgEx
RestoreDC
GetPixel
DeleteObject
CloseFigure
GetPixel
AddFontResourceExW
AbortPath
BitBlt
ClearBrushAttributes
SetTextColor
ClearBitmapAttributes
AddFontResourceA
AddFontResourceTracking
CreateSolidBrush

user32

LoadCursorA
DrawTextA
GetDC
CalcMenuBar
GetFocus
CopyIcon
AppendMenuA
InsertMenuA
GetMenu
LoadMenuA
EndDialog
GetCursor
DrawIcon
DrawIconEx
GetDlgItem
CopyRect
AlignRects
AppendMenuW
BlockInput

advapi32

RegEnumValueW
RegLoadKeyW
RegDeleteValueA
RegOpenKeyExW
RegQueryValueExA
RegCreateKeyW
RegDeleteKeyA
RegEnumKeyW
RegCreateKeyExW
RegReplaceKeyA
RegDeleteKeyW
RegEnumKeyExA
RegReplaceKeyW
RegQueryInfoKeyA
RegQueryValueA
RegCreateKeyExA
RegGetKeySecurity

comctl32

ImageList_AddIcon
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Draw
ImageList_Copy
ImageList_DrawEx
ImageList_GetIcon
ImageList_DragEnter
ImageList_DragShowNolock
ImageList_Read
ImageList_GetImageRect
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_Replace
ImageList_DrawIndirect
ImageList_LoadImage
ImageList_DragMove
ImageList_Destroy

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6174346b04e778a227971c98137cc93

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 102KB - Virtual size: 174KB

.reloc Size: - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 102KB - Virtual size: 174KB

.reloc
Size: - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB