bf7ba672cf33cfd458a9265fa0ae4c7558d4548a9e088636271d0a7c6d9d921c

General

Target

bf7ba672cf33cfd458a9265fa0ae4c7558d4548a9e088636271d0a7c6d9d921c
Size

114KB
MD5

749192126f6d886c2726a73a0965975f
SHA1

c2e997678539cdd4656f09c42134edd5ad3985dd
SHA256

bf7ba672cf33cfd458a9265fa0ae4c7558d4548a9e088636271d0a7c6d9d921c
SHA512

3f7600d954a6c6469a7cd8f30901ec5a37edf81e9e1ce8db8db04cde4ad923bb87bb9459057bd6a16d8662f90682fa1f445123496704ccff64b388a0dfe75511
SSDEEP

3072:dydJKX8N0hkSO4DLVSv8WuGNIGagh4Rx0+SI:0dJ4+qSv8WuGIGagan0HI

Score

N/A

Malware Config

Signatures

Files

bf7ba672cf33cfd458a9265fa0ae4c7558d4548a9e088636271d0a7c6d9d921c
.exe windows x86

50f74cadc13399087e2b55064bc50e59

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_initterm
__setusermatherr
signal
__p__fmode
_adjust_fdiv
__set_app_type
calloc
printf
_acmdln
_exit
exit
__getmainargs
strlen
_XcptFilter
_except_handler3
__p__commode
free
atexit
strcmp
_cexit

kernel32

CreateFileMappingA
lstrcmpiA
VirtualProtectEx
GetModuleHandleW
GetProcAddress
LoadLibraryExW
GetCurrentProcess

shell32

SHBrowseForFolderW
ShellExecuteW
SHGetDiskFreeSpaceExW
ExtractAssociatedIconW
SHGetFolderLocation
SHAppBarMessage

comctl32

CreatePropertySheetPageW
ImageList_Replace
PropertySheetA
ImageList_Add

gdi32

ExtTextOutW
TextOutW
CopyMetaFileW
RoundRect
ExtSelectClipRgn
SelectClipRgn
SetTextJustification

ole32

CoSetProxyBlanket
CoInitialize
CoCreateGuid
OleInitialize

oleaut32

SafeArrayCreate
VariantClear
GetActiveObject
SafeArrayPtrOfIndex

advapi32

RegEnumValueW
DeleteService
RegSetValueExA
RegCloseKey
OpenSCManagerW
CloseServiceHandle

user32

DialogBoxParamA
IsWindowEnabled
CreatePopupMenu
CreateWindowExA
WaitMessage

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50f74cadc13399087e2b55064bc50e59

Headers

File Characteristics

Imports

msvcrt

kernel32

shell32

comctl32

gdi32

ole32

oleaut32

advapi32

user32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 46KB - Virtual size: 63KB

.rsrc Size: 63KB - Virtual size: 62KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 46KB - Virtual size: 63KB

.rsrc
Size: 63KB - Virtual size: 62KB