828a65c9f47eb913643182a52aec362ae70cc2c1f98e89722537ddb7dfba417d

Sharing

Copy URL Twitter E-mail

General

Target

828a65c9f47eb913643182a52aec362ae70cc2c1f98e89722537ddb7dfba417d
Size

101KB
MD5

ec328fff45839ff258ccbf34d7e496c0
SHA1

6190bec18578d448e2a669e2777d5b325a96be18
SHA256

828a65c9f47eb913643182a52aec362ae70cc2c1f98e89722537ddb7dfba417d
SHA512

4965e074cd0ad6f96b0758ec08e72f105cc78ac30c143475344813f08533116b1a7a5f8edc5e05e71062ce3e9670642ae900e0980d27035ec4b922c9da509928
SSDEEP

1536:yrd8dFDAcIvppxcjh69xDneEMHIO731taQ4IaSYabB43Pkf8jH0jdnP2:y+rBepxctKdnhMoKudSi3PkfE0jdP2

Score

N/A

Malware Config

Signatures

Files

828a65c9f47eb913643182a52aec362ae70cc2c1f98e89722537ddb7dfba417d
.exe windows x86

f03adff8e89516de91edc00eb39a7a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

EnumCalendarInfoA
VirtualProtect
GetFileAttributesW
SetEnvironmentVariableA
GetModuleHandleA
SetCurrentDirectoryA
GetDiskFreeSpaceA
GetStartupInfoA
FreeEnvironmentStringsW
GetStdHandle
GetConsoleOutputCP
DeviceIoControl
GetShortPathNameA

user32

CallNextHookEx
LoadBitmapA
ShowOwnedPopups
GetSysColor
GetTopWindow
FrameRect
EqualRect
CreateWindowExA
InsertMenuA
MessageBeep
GetWindow
CloseClipboard

msvcrt

fprintf
_acmdln
__p__commode
_isctype
exit
__getmainargs
_initterm
_pipe
wcsrchr
__set_app_type
strtok
_XcptFilter
__setusermatherr
fsetpos
_setjmp
_adjust_fdiv
atol
sqrt
iswctype
strspn
__p__fmode
_except_handler3

shell32

Shell_NotifyIconW
ExtractIconExW
SHGetPathFromIDListW
SHAppBarMessage
DragAcceptFiles
Shell_NotifyIconA
DragQueryFile
SHGetDesktopFolder
SHFileOperationA
ExtractIconW

oleaut32

SysStringByteLen
SysFreeString
SysAllocStringLen
SafeArrayRedim
VariantCopyInd
SysAllocStringByteLen

ole32

CLSIDFromString
IsAccelerator
IsEqualGUID
StgCreateDocfileOnILockBytes
CoGetClassObject

advapi32

SetSecurityDescriptorOwner
RegCreateKeyA
OpenThreadToken
RegCloseKey
RegQueryInfoKeyW
RegSetValueExW
LookupPrivilegeValueW
RegDeleteValueW
FreeSid

comctl32

ImageList_Destroy
ImageList_SetDragCursorImage
ImageList_ReplaceIcon
ImageList_Write
ImageList_DragShowNolock

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f03adff8e89516de91edc00eb39a7a7a

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

oleaut32

ole32

advapi32

comctl32

Sections

.text Size: 71KB - Virtual size: 70KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 71KB - Virtual size: 70KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB