980ed5fa8291d754d2480b8835a75b16a3d255e43f38d739218f2e880fe09c0b

Sharing

Copy URL Twitter E-mail

General

Target

980ed5fa8291d754d2480b8835a75b16a3d255e43f38d739218f2e880fe09c0b
Size

99KB
MD5

a568ab591dcfb14664b73f03d517e799
SHA1

ca079c2cf23ad3eea2b32224dd161f18bcf73d28
SHA256

980ed5fa8291d754d2480b8835a75b16a3d255e43f38d739218f2e880fe09c0b
SHA512

6557312adf58514c32eb36629569b6b7630775b569643a8365e9ad9b650c18e452bb6d26f1ed4c40da3e7e6bfe67a8ccf01725285f222c85fe6c49ec9b1d4ed3
SSDEEP

1536:nYXicAaHuGjcj4ckIeOnG9ugtlHXymZE/gSdv2HaQoXAvdGD:YyjshUwCwZaFXAFGD

Score

N/A

Malware Config

Signatures

Files

980ed5fa8291d754d2480b8835a75b16a3d255e43f38d739218f2e880fe09c0b
.exe windows x86

23ee4a89b2fd19dfdd7a0860047e0a9c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
__getmainargs
_XcptFilter
__set_app_type
_acmdln
calloc
__p__fmode
_errno
memcpy
_onexit
fputc
__setusermatherr
wcslen
_adjust_fdiv
_exit
_except_handler3
free
_cexit
strstr
abort
_initterm
strchr

kernel32

WriteFile
GetVersionExW
ReadFile
GetStartupInfoA
lstrcpynA
IsBadCodePtr
GetUserDefaultLangID
LoadLibraryExW
CreateFileMappingA
FreeLibrary
GetModuleFileNameA
GetProcAddress
SetEnvironmentVariableA

comctl32

ImageList_GetImageInfo
ImageList_SetIconSize
ImageList_DragLeave
ImageList_Draw
ImageList_GetIcon
ImageList_LoadImageW
ImageList_DragEnter
ImageList_SetImageCount
ImageList_SetDragCursorImage
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_Destroy
ImageList_LoadImageA

gdi32

GetMetaFileBitsEx
SaveDC
CreatePalette
ExtCreatePen
SetTextAlign
CopyMetaFileA
FillRgn
PatBlt
GetTextFaceA
BeginPath

user32

RemovePropA
EmptyClipboard
GetWindowThreadProcessId
EnableMenuItem
SetCursor
LoadIconA
GetClassNameA
EndPaint
GetMenu
MapWindowPoints
GetClassInfoA
PostQuitMessage
GetFocus
SystemParametersInfoA
ScrollWindow
SetFocus
GetWindowPlacement
GetCapture
GetSysColor
CallNextHookEx

oleaut32

SetErrorInfo
SysReAllocStringLen
VariantCopy
SafeArrayPtrOfIndex
CreateErrorInfo
SafeArrayGetUBound
SysStringByteLen
SafeArrayCreate
SysFreeString
SysStringLen
GetActiveObject

ole32

CoGetMalloc
CoSetProxyBlanket
OleFlushClipboard
IIDFromString
CoLoadLibrary
IsEqualGUID
CoRegisterMessageFilter
CoReleaseMarshalData

advapi32

RegCloseKey
CryptCreateHash
DeleteService
IsValidSid
OpenThreadToken
RegOpenKeyW
GetTokenInformation
InitializeAcl
OpenSCManagerA
AllocateAndInitializeSid
LookupPrivilegeValueA

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

23ee4a89b2fd19dfdd7a0860047e0a9c

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

gdi32

user32

oleaut32

ole32

advapi32

Sections

.text Size: 57KB - Virtual size: 56KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 57KB - Virtual size: 56KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 16KB - Virtual size: 15KB