e3dcd4859ec9c4ccfaa762df8f8a1132ee9c3dd302b3dd12bcbe3eaf6cf3b4ad

Sharing

Copy URL

Twitter E-mail

General

Target

e3dcd4859ec9c4ccfaa762df8f8a1132ee9c3dd302b3dd12bcbe3eaf6cf3b4ad
Size

124KB
MD5

a8229775b8de595fa6dd7c26bdf1b46e
SHA1

733b3df4deb1c0de1f2a6a8b079acca8a5b1c311
SHA256

e3dcd4859ec9c4ccfaa762df8f8a1132ee9c3dd302b3dd12bcbe3eaf6cf3b4ad
SHA512

7fbed81aee0b05266e983cfd3b3b2aee13892bc51191fc8a73376c539d5606e38dca6b78ede4694a67da4b8956cc32d40606234c9ce45c1e38d758753920f5ce
SSDEEP

3072:IULEM7RBV65W1IkWmBw1VSuIL61DTie4K2A7xEMzztFR:oM9BV6QarGsDT5977P

Score

N/A

Malware Config

Signatures

Files

e3dcd4859ec9c4ccfaa762df8f8a1132ee9c3dd302b3dd12bcbe3eaf6cf3b4ad
.exe windows x86

4269b78bcaf9115ee47eba458c334fb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetFileAttributesW
SetHandleCount
GetVersionExW
GetTempPathA
GlobalFree
GetModuleHandleA
VirtualProtect
CreateProcessW
GetSystemDefaultLCID
IsBadWritePtr
GetStartupInfoA

msvcrt

fgetc
exit
iswspace
__setusermatherr
__p__fmode
_initterm
longjmp
wcschr
strcmp
__p__commode
_acmdln
_except_handler3
__set_app_type
getenv
_adjust_fdiv
_XcptFilter
_read
puts
__getmainargs
log

user32

EnumThreadWindows
GetWindowTextA
GetScrollPos
GetSystemMetrics
SetMenu
UpdateWindow

ole32

CoTaskMemFree
OleSetClipboard
OleIsCurrentClipboard
CoRevokeClassObject
StringFromCLSID
OleFlushClipboard
StringFromIID
CoGetInterfaceAndReleaseStream
CoInitialize
OleUninitialize

gdi32

PolyBezierTo
Pie
SaveDC
BitBlt
LPtoDP
GetDIBits
TranslateCharsetInfo
CreateHalftonePalette
CreateRoundRectRgn
RoundRect
OffsetClipRgn
SetDIBits

version

VerInstallFileA
VerInstallFileW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoW

shell32

Shell_NotifyIconA
ShellExecuteExW
ShellExecuteW
SHBrowseForFolder
CommandLineToArgvW
SHGetPathFromIDListW
ExtractIconExW

advapi32

OpenThreadToken
RegOpenKeyExA
LookupPrivilegeValueW
RegQueryValueA
SetSecurityDescriptorOwner
CryptDestroyHash
RegEnumKeyW
QueryServiceStatus
OpenServiceA
IsValidSid
LookupPrivilegeValueA
InitiateSystemShutdownA
RegQueryValueExA
RegDeleteKeyA

oleaut32

GetErrorInfo
SafeArrayUnaccessData
SysReAllocStringLen
SafeArrayPutElement
GetActiveObject
VariantCopy

comctl32

ImageList_GetImageInfo
PropertySheetA
ImageList_Add
ImageList_SetOverlayImage
ImageList_Remove
ImageList_GetIcon
ImageList_SetDragCursorImage

Sections

.text
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4269b78bcaf9115ee47eba458c334fb6

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

gdi32

version

shell32

advapi32

oleaut32

comctl32

Sections

.text Size: 55KB - Virtual size: 54KB

.data Size: 42KB - Virtual size: 42KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 55KB - Virtual size: 54KB

.data
Size: 42KB - Virtual size: 42KB

.rsrc
Size: 25KB - Virtual size: 25KB