b12937e8c00558b7011cfea9967c064c53b0427531e0d7b7e9d0ab02946ddde3

Sharing

Copy URL Twitter E-mail

General

Target

b12937e8c00558b7011cfea9967c064c53b0427531e0d7b7e9d0ab02946ddde3
Size

147KB
MD5

634e0f0b2087e5f1e3c1ea129b9dc884
SHA1

2a169419ff570835bc3647fb69dd1f8141b051bc
SHA256

b12937e8c00558b7011cfea9967c064c53b0427531e0d7b7e9d0ab02946ddde3
SHA512

a531b4310093bf1c54b00229d8e97939f7f4d59d065d34b28dcbca5d50256f6661c958b256e65ff00c3dc37b92b9ca7ec16ff2d2187d44afb8052f488095c596
SSDEEP

3072:fu9SG9t67l60b9PXkYacVzS0Ef3VnyU7c/yixnw2w+s0Y0w:fcSfRb9PUYa+OrvMU7c//X2Z

Score

N/A

Malware Config

Signatures

Files

b12937e8c00558b7011cfea9967c064c53b0427531e0d7b7e9d0ab02946ddde3
.exe windows x86

08ab6bc23b3f127fb7f3fa310de20a4d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetSystemInfo
TerminateProcess
GlobalAlloc
WriteConsoleA
GetVersionExA
FileTimeToDosDateTime
GlobalUnlock
GetTempPathA
GetFileTime
GetModuleHandleA
SetUnhandledExceptionFilter
GetStartupInfoA
VirtualProtect
FileTimeToLocalFileTime
GetModuleHandleW
MulDiv

msvcrt

__p__fmode
_XcptFilter
wcschr
_controlfp
__getmainargs
__setusermatherr
_adjust_fdiv
_dup2
time
log10
fprintf
_stat
__p__commode
__set_app_type
_except_handler3
_cexit
_initterm
_acmdln
_ultoa
exit

shell32

ExtractAssociatedIconW
CommandLineToArgvW
ExtractIconExA
ExtractIconA
SHGetFolderPathA
SHCreateDirectoryExW
ShellExecuteA
ShellExecuteEx
SHFileOperationW
SHGetDesktopFolder
SHChangeNotify
SHGetFileInfo

user32

WaitMessage
CharNextA
SetCapture
ClientToScreen
SetPropA
GetWindow
SetWindowPlacement
SetMenu
GetFocus
wsprintfA
DestroyWindow
ReleaseDC
SystemParametersInfoA

advapi32

DeleteService
RegCreateKeyExW
RegSetValueExA
SetSecurityDescriptorGroup
OpenServiceA
RegQueryInfoKeyA
RegEnumValueA
LookupPrivilegeValueW
RegEnumValueW
IsValidSid
CryptGenRandom
GetLengthSid

comctl32

ImageList_ReplaceIcon
ImageList_Remove
ImageList_SetDragCursorImage
ImageList_GetIconSize
InitCommonControls
ImageList_LoadImageW
ImageList_Draw

oleaut32

SysFreeString
VariantCopyInd
SetErrorInfo
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPtrOfIndex
SysStringLen
SysAllocStringByteLen
CreateErrorInfo

version

VerQueryValueA
VerInstallFileA
VerFindFileW

ole32

OleDraw
StringFromIID
StringFromCLSID
CreateBindCtx
OleFlushClipboard
StgCreateDocfileOnILockBytes

gdi32

GetObjectType
GetSystemPaletteEntries
ExtFloodFill
EnumFontFamiliesExW
CreateFontIndirectA
DeleteEnhMetaFile
Escape
CopyMetaFileW
ExtCreatePen

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 110KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

08ab6bc23b3f127fb7f3fa310de20a4d

Headers

File Characteristics

Imports

kernel32

msvcrt

shell32

user32

advapi32

comctl32

oleaut32

version

ole32

gdi32

Sections

.text Size: 18KB - Virtual size: 18KB

.data Size: 18KB - Virtual size: 41KB

.rsrc Size: 110KB - Virtual size: 184KB

.text
Size: 18KB - Virtual size: 18KB

.data
Size: 18KB - Virtual size: 41KB

.rsrc
Size: 110KB - Virtual size: 184KB