cecb7e7695152522dc3160b440f1376b1b82b5c514c244fb466ea6e92945e663

Sharing

Copy URL Twitter E-mail

General

Target

cecb7e7695152522dc3160b440f1376b1b82b5c514c244fb466ea6e92945e663
Size

103KB
MD5

ffe78fc2e18ff8c52ddefe08bdfb61bf
SHA1

1134800aaa80dbef132748ca89f0484e213d2ea2
SHA256

cecb7e7695152522dc3160b440f1376b1b82b5c514c244fb466ea6e92945e663
SHA512

a53cd4e87c27d37d7b667d44c2b14a620edf8dbde7fffacfdcf70ba51bfd49288db536472cb6ee06ea2084cee8876fabb017d6e166cc455a8c06d3f9d12ef77a
SSDEEP

1536:c95wQ9baEnPJEmlIPuJuR+zYtQ5zFYwL5sjAPAHpGlcJgEMeXdF/lTD:ywAa8plcuoAh5RlKAPAJR5dFdTD

Score

N/A

Malware Config

Signatures

Files

cecb7e7695152522dc3160b440f1376b1b82b5c514c244fb466ea6e92945e663
.exe windows x86

9b3bd4750ce67325589863f815ee17d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fwrite
memset
__p__commode
calloc
__set_app_type
_cexit
strrchr
_exit
__getmainargs
strncmp
_except_handler3
free
_initterm
__setusermatherr
__p__fmode
_adjust_fdiv
_acmdln
strcpy
fopen
fclose
realloc

kernel32

GetTempPathW
WriteFile
GetFileType
LocalFileTimeToFileTime
LoadLibraryExW
InterlockedDecrement
VirtualQuery
GetSystemTime
OutputDebugStringA
GetProcAddress
GetDiskFreeSpaceA
CompareStringA
GetFileAttributesW
lstrcpynA
FreeLibrary
ExitProcess
GetUserDefaultLangID
EnumCalendarInfoA
ReadFile
GetStartupInfoA
RemoveDirectoryA

comctl32

PropertySheetW
ImageList_GetImageCount
ImageList_LoadImageA
DestroyPropertySheetPage
ImageList_SetBkColor
InitializeFlatSB
ImageList_GetBkColor
PropertySheetA
ImageList_SetImageCount

oleaut32

SysStringByteLen
SafeArrayGetElement
SysReAllocStringLen
VariantClear
LoadTypeLib
SetErrorInfo
SysAllocStringLen

user32

GetForegroundWindow
DrawEdge
PeekMessageA
GetSysColor
SystemParametersInfoA
SetCapture
EnableMenuItem
MessageBeep
GetMessageA
BeginPaint

ole32

OleSetMenuDescriptor
CoGetInterfaceAndReleaseStream
CoSetProxyBlanket
StringFromGUID2
CreateStreamOnHGlobal
OleRun
CoTaskMemFree
IsAccelerator
OleSetClipboard
OleInitialize
CoTaskMemAlloc
StringFromIID

advapi32

RegOpenKeyW
OpenSCManagerW
RegDeleteValueW
RegCreateKeyA
RegOpenKeyExW
RegEnumValueA
CheckTokenMembership
AllocateAndInitializeSid
CloseServiceHandle
OpenSCManagerA
RevertToSelf
SetSecurityDescriptorOwner
RegFlushKey
LookupPrivilegeValueA

gdi32

EnumMetaFile
CopyEnhMetaFileA
ExtTextOutW
CombineRgn
GetObjectType
GetCurrentObject
OffsetRgn
CreateSolidBrush
CreateMetaFileW

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b3bd4750ce67325589863f815ee17d3

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

oleaut32

user32

ole32

advapi32

gdi32

Sections

.text Size: 60KB - Virtual size: 59KB

.data Size: 26KB - Virtual size: 26KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 60KB - Virtual size: 59KB

.data
Size: 26KB - Virtual size: 26KB

.rsrc
Size: 16KB - Virtual size: 15KB