cb15386917893380f04fe08fe5fc590159f31aee2e388d9d57d2b9a9c7f6187a

Sharing

Copy URL Twitter E-mail

General

Target

cb15386917893380f04fe08fe5fc590159f31aee2e388d9d57d2b9a9c7f6187a
Size

112KB
MD5

16661655e7ab9ed89430d795c99600aa
SHA1

0c30b86045834c0440bd5324dcf26c32b738b8b8
SHA256

cb15386917893380f04fe08fe5fc590159f31aee2e388d9d57d2b9a9c7f6187a
SHA512

18bc25fab74d33cc17c39f0f4b5bff140806d055ba657fdb0ded37eab37f52433c05a8109f5165ad8b1e81fe9cf37280defbeb5fadb6195a60d538ee7f62c4dc
SSDEEP

1536:KNOA2mT4h0zfMnp01XgpSpyrfStwSKtQvYemasY7fRgEWBwBHt5AYxrEh9zVBf5x:+PpscXgAorfSlKWQ1Ml5drwNVBfjAk

Score

N/A

Malware Config

Signatures

Files

cb15386917893380f04fe08fe5fc590159f31aee2e388d9d57d2b9a9c7f6187a
.exe windows x86

ff282eef47cb7b3fd8ab4bb619213b7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberFormatA
WaitForSingleObject
GetCommandLineW
LocalFree
DuplicateHandle
Sleep
CompareStringW
lstrlenA
GetOEMCP
SetCurrentDirectoryA
VirtualFree
GlobalReAlloc
GetThreadLocale
GetSystemTime
GetModuleHandleA
FreeEnvironmentStringsW
GetCurrentThreadId
DeleteFileA
GetCommandLineA
FileTimeToDosDateTime

msvcrt

_exit
__p___initenv
_controlfp
_XcptFilter
__p__commode
strcpy
__setusermatherr
__p__fmode
_adjust_fdiv
_write
signal
_except_handler3
fread
__getmainargs
__set_app_type
strrchr
_stricmp
strstr
fopen
fprintf
calloc
_initterm
free
sinh

comdlg32

GetOpenFileNameA

user32

SetMenu
OpenClipboard
SetDlgItemTextA
WaitMessage
SetRect
SendMessageA
GetSysColorBrush
IsWindowVisible
GetWindowRect
CreateWindowExA
InvalidateRect
EnableWindow
SendDlgItemMessageA

gdi32

SetTextCharacterExtra
ScaleWindowExtEx
SetBkColor
StrokeAndFillPath
SaveDC
GetPixel
EnumFontFamiliesExA
GetDIBits
LineDDA
GetCurrentPositionEx
GetClipRgn

advapi32

AllocateAndInitializeSid
RegOpenKeyA
OpenSCManagerA
CryptDestroyHash
RegQueryValueA
IsValidSid
SetSecurityDescriptorGroup
RegEnumKeyA
RegDeleteKeyW
CryptCreateHash

comctl32

ImageList_GetImageInfo
CreateStatusWindowA
ImageList_LoadImageA
ImageList_Remove
CreatePropertySheetPageA
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Add

ole32

StgCreateDocfileOnILockBytes
CoReleaseMarshalData
OleDraw
CoTaskMemRealloc
StgOpenStorage
OleGetClipboard
CoGetClassObject
StringFromIID
PropVariantClear
CoRegisterClassObject
OleUninitialize
CLSIDFromProgID
DoDragDrop
CoCreateInstance
CoGetInterfaceAndReleaseStream
CoSetProxyBlanket

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff282eef47cb7b3fd8ab4bb619213b7c

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

gdi32

advapi32

comctl32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 33KB - Virtual size: 32KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 33KB - Virtual size: 32KB