fee025650b81da55bd36da1d49a81cd80ffcfaade0c771b76a90b2bad172e3c6

Sharing

Copy URL Twitter E-mail

General

Target

fee025650b81da55bd36da1d49a81cd80ffcfaade0c771b76a90b2bad172e3c6
Size

103KB
MD5

91cd13c5f43e9be923b03ac2a4c6b3f0
SHA1

095266c5306e0efc1176a40f5df4b2ee7d41a179
SHA256

fee025650b81da55bd36da1d49a81cd80ffcfaade0c771b76a90b2bad172e3c6
SHA512

6785a90797e68c8eb65094b5918278cea4273735b58bab23c840a4346f93b6a65698cfb644b02918cc88e377cd9cd273f823fee3c6ccf554aa44c6505fc32326
SSDEEP

1536:fgWtQm9oziMFuWyap+EAS8vZamdrQbXh8nhvV7HnSS2YovT8AbFru4nyeqm:4MxSrFuDasS0awOXhoB33ovT84rbqm

Score

N/A

Malware Config

Signatures

Files

fee025650b81da55bd36da1d49a81cd80ffcfaade0c771b76a90b2bad172e3c6
.exe windows x86

b713e11d491bb5a9c7df1a408e27831c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p___initenv
_write
__p__commode
_adjust_fdiv
getenv
strncpy
strrchr
fprintf
memmove
free
strstr
_controlfp
_XcptFilter
strchr
strlen
__getmainargs
__p__fmode
_exit
calloc
_initterm
_except_handler3
__p__environ
sinh
__setusermatherr
__set_app_type
wcslen

comdlg32

GetOpenFileNameA

kernel32

DuplicateHandle
IsBadCodePtr
GetWindowsDirectoryA
SetFileTime
MoveFileA
GetModuleFileNameA
SetHandleCount
GetCurrentThreadId
GetCPInfo
FileTimeToDosDateTime
GetNumberFormatA

user32

SetWindowPos
CallWindowProcA
GetLastActivePopup
GetActiveWindow
GetWindowPlacement
OemToCharA
AdjustWindowRectEx
GetPropA
SetWindowTextA
SendMessageA
GetCapture
RemoveMenu
SetDlgItemTextA
GetForegroundWindow
GetWindowTextA
GetWindowThreadProcessId
EnableMenuItem
DefWindowProcA
CloseClipboard

gdi32

MoveToEx
CreateDCA
GetStretchBltMode
EndDoc
RemoveFontResourceA
GetWindowOrgEx
IntersectClipRect
GetEnhMetaFileBits
RectVisible
GetTextAlign
PolyBezierTo
ScaleViewportExtEx
CloseMetaFile

comctl32

ImageList_SetIconSize
ImageList_SetDragCursorImage
InitCommonControlsEx
CreateStatusWindowA
ImageList_Replace
ImageList_Remove
ImageList_GetImageInfo
ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_GetBkColor
ImageList_Write
ImageList_Draw
CreatePropertySheetPageW
ImageList_BeginDrag
PropertySheetW

advapi32

RevertToSelf
OpenSCManagerW
OpenProcessToken
AddAccessAllowedAce
RegEnumKeyW
QueryServiceStatus
LookupPrivilegeValueW
CloseServiceHandle
RegSetValueExW
RegQueryValueExA
LookupPrivilegeValueA
OpenThreadToken
GetLengthSid

ole32

OleRun
CoSetProxyBlanket
PropVariantClear
OleDraw
CoLoadLibrary
DoDragDrop
CLSIDFromString
CreateItemMoniker
CreateBindCtx

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b713e11d491bb5a9c7df1a408e27831c

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

comctl32

advapi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 28KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 28KB - Virtual size: 28KB