c034eadd9f8fb17b463ac7abf8ada2ceacbc066a1fb451253740848627381638

Sharing

Copy URL

Twitter E-mail

General

Target

c034eadd9f8fb17b463ac7abf8ada2ceacbc066a1fb451253740848627381638
Size

111KB
MD5

7ccd60f205f92e3aca44840c664e6c2a
SHA1

2adcb76802daf8b0327648a83e08630a5b5f2bfd
SHA256

c034eadd9f8fb17b463ac7abf8ada2ceacbc066a1fb451253740848627381638
SHA512

ff38a14e66c40794eb539fe37f0b4768f503975fb4da356c11fadb1bdb865ab18918e372fa0c782ac58fd5fc5d7d28579a2916a0403fe957ef00074b74b5ef1f
SSDEEP

1536:XLa1OK5sAM7RCzbTahnIQf+AwYXR9cU7Bzv0WaCsR4lv3HlFZaFyhwFmIv5lUoTK:GB+tkaRIO7uUFz+QXlFlw46lJG

Score

N/A

Malware Config

Signatures

Files

c034eadd9f8fb17b463ac7abf8ada2ceacbc066a1fb451253740848627381638
.exe windows x86

efc6f3482752566240bde0b055fc7442

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
RemoveDirectoryA
SystemTimeToFileTime
FileTimeToLocalFileTime
GetStartupInfoW
lstrcmpiW
GetConsoleMode
SetHandleCount
GetSystemTime
VirtualProtectEx
GetNumberFormatA
VirtualAlloc
SetEnvironmentVariableA
IsDebuggerPresent

msvcrt

__p__fmode
sqrt
free
_controlfp
atexit
strrchr
_adjust_fdiv
fputc
calloc
__p__commode
wcslen
__p___initenv
_exit
_onexit
_initterm
fwrite
_XcptFilter
_strnicmp
__setusermatherr
_except_handler3
realloc
memset
__dllonexit
_write
fputs
strstr
_errno
__getmainargs
__set_app_type

comdlg32

GetOpenFileNameA

user32

GetDesktopWindow
FillRect
OpenClipboard
FindWindowA
OffsetRect
SetCapture
InsertMenuItemA
SetActiveWindow
GetDC
SetDlgItemTextA
IsWindowVisible
UnregisterClassA
MessageBeep
GetWindowTextA

comctl32

ImageList_SetIconSize
ImageList_LoadImageA
ImageList_Read
ImageList_SetBkColor
CreateToolbarEx
ImageList_GetImageCount
CreateStatusWindowA
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_SetImageCount
ImageList_Replace
CreatePropertySheetPageA
ImageList_GetIconSize

advapi32

LookupPrivilegeValueW
OpenSCManagerA
GetLengthSid
RegEnumKeyA
RegEnumKeyExA
OpenServiceW
RevertToSelf
InitializeSecurityDescriptor
CheckTokenMembership
GetTokenInformation
CloseServiceHandle
CopySid
DeleteService
RegOpenKeyExA

ole32

OleInitialize
IIDFromString
CreateILockBytesOnHGlobal
OleSetClipboard
RegisterDragDrop
CoTaskMemFree
CLSIDFromProgID
CoReleaseMarshalData
StringFromGUID2
CoInitializeSecurity
CreateItemMoniker

gdi32

SetPixel
GetTextExtentPoint32W
CopyEnhMetaFileA
StretchBlt
CreateFontW
GetWinMetaFileBits
GetEnhMetaFileHeader
StrokePath
GetBkColor
EnumFontFamiliesExA
SetBrushOrgEx
GetSystemPaletteEntries
GetTextExtentPointA

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efc6f3482752566240bde0b055fc7442

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

comctl32

advapi32

ole32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 49KB

.rsrc Size: 19KB - Virtual size: 18KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 49KB

.rsrc
Size: 19KB - Virtual size: 18KB