a93a763fff9e2674a6017601067243ca1da1844427e71e63fb5501cd56ddef6e

Sharing

Copy URL Twitter E-mail

General

Target

a93a763fff9e2674a6017601067243ca1da1844427e71e63fb5501cd56ddef6e
Size

90KB
MD5

65754fcb00947bb2447e49f5b35073e0
SHA1

96218eb5852f8a8532f4f93f90f60282984a21a1
SHA256

a93a763fff9e2674a6017601067243ca1da1844427e71e63fb5501cd56ddef6e
SHA512

f65a71d79b86c1fd08863ba3f4b66599828492bf0bea17b67a21e49bf9a4faa53ef6dd42e59e1c8eee005d5ce3e4605e1121b3f0f97140fdd92cbceffcee26de
SSDEEP

1536:0CrcmZs8Bi06SRxnLKMVYeq+at+q3oTsDJp/TAC/hLsDWAokKYuiKUDYVseP4:0CrI8RoQ3++q3oodpnLoZHKqYVZP4

Score

N/A

Malware Config

Signatures

Files

a93a763fff9e2674a6017601067243ca1da1844427e71e63fb5501cd56ddef6e
.exe windows x86

7242577f37e06ab933e03fe50dc3bea3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_exit
__set_app_type
_XcptFilter
_setmode
fprintf
_acmdln
signal
fputc
strrchr
__p__commode
calloc
_except_handler3
_stricmp
__getmainargs
sprintf
free
_initterm
strlen
__p__fmode
__setusermatherr
strcpy
strcmp
__p__environ
_adjust_fdiv
fflush
_cexit
strstr

kernel32

GetModuleHandleW
GetStartupInfoA
WriteFile
ReadFile
GetFileAttributesA
SystemTimeToFileTime
GlobalUnlock
GetProcAddress
FreeLibrary
GetLocalTime
GetTimeZoneInformation
lstrcatA
GlobalAlloc
lstrcmpiW
lstrcmpA
GetStartupInfoW
LoadLibraryExW
GetUserDefaultLangID
GetSystemDefaultLCID

comctl32

ImageList_DrawEx
CreateStatusWindowA
PropertySheetA
CreatePropertySheetPageW
ImageList_Destroy
ImageList_BeginDrag
ImageList_AddMasked
CreatePropertySheetPageA
InitializeFlatSB
ImageList_Remove
ImageList_SetOverlayImage
ImageList_DragLeave
ImageList_Replace
ImageList_DragEnter

advapi32

RegDeleteKeyA
DeregisterEventSource
CryptGenRandom
OpenServiceW
CryptHashData
AdjustTokenPrivileges
CopySid
SetSecurityDescriptorDacl
DeleteService
CryptAcquireContextA
OpenThreadToken
GetLengthSid
RegQueryInfoKeyA
RegDeleteValueA

user32

CreatePopupMenu
IntersectRect
OffsetRect
BeginPaint
GetIconInfo
SetScrollRange
DrawMenuBar
FillRect
GetMessagePos
FrameRect
SetClassLongA
DeleteMenu

gdi32

SetColorAdjustment
SetAbortProc
GetWinMetaFileBits
ExcludeClipRect
CreateFontIndirectA
StartDocW
CombineRgn
CreateEnhMetaFileA
PatBlt
CreateCompatibleBitmap
Arc

oleaut32

SysReAllocStringLen
CreateErrorInfo
SysStringLen
GetActiveObject
SysAllocStringLen

ole32

GetRunningObjectTable
IIDFromString
CreateBindCtx
StringFromCLSID
StringFromGUID2
CoUninitialize
ReleaseStgMedium
CreateItemMoniker
CoInitializeSecurity

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7242577f37e06ab933e03fe50dc3bea3

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

advapi32

user32

gdi32

oleaut32

ole32

Sections

.text Size: 50KB - Virtual size: 49KB

.data Size: 23KB - Virtual size: 22KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 50KB - Virtual size: 49KB

.data
Size: 23KB - Virtual size: 22KB

.rsrc
Size: 16KB - Virtual size: 15KB