f6b38c30cf771ff2d745a2fba75cc980bcc825b6f06bd42937991ff39b60c05e

Sharing

Copy URL Twitter E-mail

General

Target

f6b38c30cf771ff2d745a2fba75cc980bcc825b6f06bd42937991ff39b60c05e
Size

214KB
MD5

e45b85b9679ecf26d618b23ccc747a82
SHA1

75f99f42e66fa7f613891d67808534409836d30a
SHA256

f6b38c30cf771ff2d745a2fba75cc980bcc825b6f06bd42937991ff39b60c05e
SHA512

1d5eda3a87c52422e8210e6025a27447e3449151960b04c76d3bee78ef4fce32a6464f4c90cf0a731eb08f5c99947700a0c1ab3d504c70b64f3cb2e787e3bf98
SSDEEP

3072:xaXxyPUFxdFuRNGYTAJkznt7G6Lg+ATUR5oUuTwOf8loF4yRviPTL5P3i/bmn:xYxhBFUN6IG6Li0oUvOVFvvcTRgbq

Score

N/A

Malware Config

Signatures

Files

f6b38c30cf771ff2d745a2fba75cc980bcc825b6f06bd42937991ff39b60c05e
.exe windows x86

87deb71d60f555a66437772060bc15e2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantChangeType
OleLoadPicture
SysReAllocStringLen
SysStringLen
GetErrorInfo
SysFreeString
SafeArrayGetUBound
SysAllocStringLen
VariantCopyInd
SafeArrayCreate

comdlg32

FindTextA
ChooseColorA
GetSaveFileNameA

shell32

Shell_NotifyIconW
SHGetFolderPathA
Shell_NotifyIconA
SHGetFileInfoA

kernel32

VirtualAllocEx
lstrcmpA
lstrcatA
GetOEMCP
ExitProcess
HeapDestroy

user32

ClientToScreen
DrawIcon
TrackPopupMenu
DefWindowProcA
DispatchMessageW
SystemParametersInfoA
GetClassNameA
GetSystemMetrics
IsWindowUnicode
DestroyIcon
GetIconInfo
MoveWindow
InflateRect
KillTimer
GetWindowPlacement
MapVirtualKeyA
InvalidateRect
RegisterClipboardFormatA
SetMenu
GetLastActivePopup
SetActiveWindow
SetPropA
DrawFrameControl
IsWindow
GetSysColorBrush
MessageBeep
ActivateKeyboardLayout
GetKeyNameTextA
GetTopWindow
LoadBitmapA
DrawTextA
GetWindow
SetWindowTextA
OemToCharA
SetWindowPlacement
SetClipboardData
DrawIconEx
SetCapture
EnableMenuItem
DrawEdge
CharNextW
EnableScrollBar
WaitMessage
IsDialogMessageW
GetScrollPos
GetWindowLongA
AdjustWindowRectEx
MessageBoxA
GetKeyboardType
PostMessageA
GetSubMenu
LoadKeyboardLayoutA
IntersectRect
ScrollWindow
SetRect
wsprintfA
SetFocus
InsertMenuItemA
EnumThreadWindows
LoadIconA
CallNextHookEx
SetCursor
FillRect
SetForegroundWindow
RegisterClassA
GetActiveWindow
IsWindowVisible
CharNextA
GetMenuItemCount
DestroyCursor
PeekMessageW

shlwapi

SHGetValueA
PathIsContentTypeA
PathFileExistsA
SHStrDupA

gdi32

GetBkMode
CreatePalette
GetDCOrgEx

Exports

Exports

ppuqIn@8
_VLUi1M8vl
__4ChYhaUPzKUc@24
_P1MU68h_@16
_syLdNRD4dIHyTb
_TkPhi6DLCi
_jHLBBu5@16
ojKEFcuU@8
_XhcdoxQO
3qL_9CVfvgaW_A
_Au7wrulCV
_zS7XLe1S@4
09PaSm@8
_ZFnIs0O@4
5Wd51Ux7mk
oLXBbR
_WGFIe5Tow5U9
xP9duZwU
_egl2Ezny0WXh0k
Tx26Ce
kIlgI@16

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

87deb71d60f555a66437772060bc15e2

Headers

File Characteristics

Imports

oleaut32

comdlg32

shell32

kernel32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 195KB - Virtual size: 194KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 195KB - Virtual size: 194KB

.rsrc
Size: 1KB - Virtual size: 1KB