6c4997717ef547f713308a15727457dc2ab5585ed0383948f8f45eff9fd4ac6c

Sharing

Copy URL Twitter E-mail

General

Target

6c4997717ef547f713308a15727457dc2ab5585ed0383948f8f45eff9fd4ac6c
Size

92KB
MD5

36c7a68e0c6d51630cf2f485d6920240
SHA1

062b4fb05f444f987344a29989e7e37ce1133de2
SHA256

6c4997717ef547f713308a15727457dc2ab5585ed0383948f8f45eff9fd4ac6c
SHA512

0b8dc92cd38f1d68cb256531334b5f87167179406c5c8d7ab13db122a23159f185fcb45bb7426776fe75e2de0d882d8b4e219c756527384d2ac272f8faaeb51a
SSDEEP

1536:G0N49/X7SuzHgmN2bSx2h4ST5+JRE2nW4zGXiSoCXHQZ8T2:Gv/rZJgbSchLGRE7qc08T

Score

N/A

Malware Config

Signatures

Files

6c4997717ef547f713308a15727457dc2ab5585ed0383948f8f45eff9fd4ac6c
.exe windows x86

3de8f254261b8f695f91e3bb7d5c7c06

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CreateOleAdviseHolder
CoCreateGuid

kernel32

GetProcAddress
SetLastError
GetOEMCP
GlobalFindAtomA
VirtualAlloc
GetCPInfo
InitializeCriticalSection
Sleep
FreeLibrary
GetCurrentThreadId
ExitThread
GetLocalTime
DeleteCriticalSection
LoadLibraryA
GetDiskFreeSpaceA
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
LocalAlloc
GetLastError
GetVersionExA
LoadLibraryExA
GetStringTypeA
lstrcatA

gdi32

GetPixel
LineTo
SetBkMode
BitBlt
GetDCOrgEx
SetBkColor
CreatePenIndirect
GetDIBits
CreateDIBitmap
GetPaletteEntries
SetBkColor
CreateDIBSection

user32

GetClassInfoA
CheckMenuItem
BeginDeferWindowPos
GetDlgItem
CharToOemA
SystemParametersInfoA
GetMessagePos
DefWindowProcA
EqualRect
SetWindowTextA
GetClipboardData
DrawIcon
GetIconInfo
FrameRect
GetSysColor
GetMenuItemInfoA
GetDesktopWindow
GetForegroundWindow
GetCursor
GetSysColorBrush
MessageBoxA
DrawEdge
GetLastActivePopup
EnableMenuItem
GetCursorPos
GetFocus
SetCursor
IsWindowVisible
TrackPopupMenu
IsMenu
GetMenuStringA
DefFrameProcA
CallWindowProcA
SetWindowPos
EnumWindows
EnableScrollBar
ShowScrollBar
GetKeyNameTextA
EndPaint
GetMenu
GetMenuItemID
GetScrollInfo
DefMDIChildProcA
BeginPaint
CharLowerBuffA
CreateWindowExA
CreateMenu
EndDeferWindowPos
CreatePopupMenu
DispatchMessageW
SetWindowLongA
CharNextA
GetClientRect
GetDCEx
DrawFrameControl
GetWindow
GetKeyState
IsDialogMessageA
GetActiveWindow
FillRect
RegisterClassA
GetScrollPos
GetClassLongA
GetDC
ClientToScreen
CharLowerA
SetTimer
DispatchMessageA
DrawIconEx
EnumThreadWindows
GetParent

advapi32

GetUserNameA
RegEnumKeyA
RegEnumValueA
RegDeleteKeyA

shell32

SHGetFileInfoA
SHDefExtractIconA
SHGetFolderPathA
Shell_NotifyIconA
SHGetDesktopFolder

msvcrt

_unlock
_wfopen
_amsg_exit
tolower
swprintf
rand
wcschr
memcpy
atol
__wgetmainargs
malloc
_chsize
wcsncmp
_acmdln
exit
atol
wcstol
memset
memcpy
_XcptFilter
_amsg_exit
_commit
malloc
__p__commode
_unlock

version

GetFileVersionInfoSizeA
VerFindFileA
VerQueryValueA

shlwapi

StrTrimA
StrDupA
SHEnumValueA
PathFileExistsA
SHDeleteValueA

comdlg32

FindTextA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

Sections

text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 165B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3de8f254261b8f695f91e3bb7d5c7c06

Headers

File Characteristics

Imports

ole32

kernel32

gdi32

user32

advapi32

shell32

msvcrt

version

shlwapi

comdlg32

Sections

text Size: 13KB - Virtual size: 13KB

.data Size: 7KB - Virtual size: 51KB

.edata Size: 68KB - Virtual size: 68KB

BSS Size: 512B - Virtual size: 165B

.rsrc Size: 1024B - Virtual size: 571B

text
Size: 13KB - Virtual size: 13KB

.data
Size: 7KB - Virtual size: 51KB

.edata
Size: 68KB - Virtual size: 68KB

BSS
Size: 512B - Virtual size: 165B

.rsrc
Size: 1024B - Virtual size: 571B