ef567cc18bb4881285858702c4e0d14d0f86121b4e153773591eaf744f7fe5c5

Sharing

Copy URL Twitter E-mail

General

Target

ef567cc18bb4881285858702c4e0d14d0f86121b4e153773591eaf744f7fe5c5
Size

102KB
MD5

431abbff2eb70285021fe57ebaa6ca97
SHA1

4b5792cb8248a86f8849928ffd21c1215284456b
SHA256

ef567cc18bb4881285858702c4e0d14d0f86121b4e153773591eaf744f7fe5c5
SHA512

a6bfaf5e1aa6faf96e78c40147748679dfcd3c2e654e908901ef82eb7a087d90b766423f5332c67edfb1e302bee9689fe293dce945a99595e61507b1f6339cec
SSDEEP

3072:mHV6CY9MAmWUCdMSwDPi17O3zHqjiUPfa:m1I6AeSoKC3e+UPC

Score

N/A

Malware Config

Signatures

Files

ef567cc18bb4881285858702c4e0d14d0f86121b4e153773591eaf744f7fe5c5
.exe windows x86

037b93ecffffc1121549ee7fe66edf77

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
_exit
fputs
sqrt
calloc
realloc
_initterm
_except_handler3
abort
exit
_errno
__setusermatherr
free
_acmdln
atexit
__getmainargs
__p__commode
_adjust_fdiv
__p__fmode
_onexit
getenv
__set_app_type
_vsnprintf

comdlg32

GetOpenFileNameA

kernel32

GetVersionExW
LCMapStringW
GetCurrentProcessId
GetDiskFreeSpaceA
DeleteFileW
UnhandledExceptionFilter
GetCurrentDirectoryA
GetOEMCP
LCMapStringA
GetStartupInfoA
GetFileTime
WaitForMultipleObjects
GetConsoleMode
GetNumberFormatA

user32

SetForegroundWindow
GetMenuItemID
GetClassNameA
GetWindowLongA
SetDlgItemTextA
GetScrollPos
SetWindowTextA
MapWindowPoints
CharLowerA
GetSysColor
GetTopWindow
OemToCharA
ClientToScreen
CreateMenu
ShowOwnedPopups
GetClientRect
GetWindow
ScrollWindow
GetMenuState

comctl32

ImageList_Write
InitializeFlatSB
CreateToolbarEx
InitCommonControlsEx
ImageList_Create
CreateStatusWindowA
ImageList_DragEnter
ImageList_Draw
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_SetImageCount

advapi32

OpenServiceA
RegCreateKeyA
RegQueryInfoKeyA
DeregisterEventSource
CryptGenRandom
RegOpenKeyW
RegFlushKey
GetSecurityDescriptorDacl
EqualSid
RegCloseKey
GetUserNameA
LookupPrivilegeValueA

ole32

CoTaskMemAlloc
CreateStreamOnHGlobal
CoDisconnectObject
StgCreateDocfileOnILockBytes
GetRunningObjectTable
OleInitialize
CLSIDFromString
CreateItemMoniker
DoDragDrop
RegisterDragDrop
CoReleaseMarshalData
CoGetMalloc
ProgIDFromCLSID
CoInitializeEx
OleFlushClipboard

gdi32

StartPage
EnumFontFamiliesExA
EnumFontFamiliesExW
SetArcDirection
GetClipRgn
GetObjectW
OffsetClipRgn
GetTextMetricsW
StretchDIBits
PlayMetaFileRecord
SetBkMode
SetColorAdjustment
SetGraphicsMode

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

037b93ecffffc1121549ee7fe66edf77

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

advapi32

ole32

gdi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 49KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 49KB

.rsrc
Size: 19KB - Virtual size: 19KB