950441261868d771958592cd7d8a29a9c453dada9904ba2112c72d5f89faeb48

Sharing

Copy URL Twitter E-mail

General

Target

950441261868d771958592cd7d8a29a9c453dada9904ba2112c72d5f89faeb48
Size

90KB
MD5

8c1666021f4bd0679f40bf63ba1a8350
SHA1

0bc4a8e52ef5f5d728648c906e6b130133979baa
SHA256

950441261868d771958592cd7d8a29a9c453dada9904ba2112c72d5f89faeb48
SHA512

6b3c5ee0014e86a238ff19648283e6c237e4b1ed81611361543bb163fcadf31a55e7f81fd24f55a7f37f4e9dc4d1d697e86d64f48fab29a864021c47924b04ff
SSDEEP

1536:5nWRuZCWJ8m6w+6YlXyP5zOGviRyD7Wy2kzJj4aiRqegS/vh:cRpWJmIXP5a0iRW75jxi0egyvh

Score

N/A

Malware Config

Signatures

Files

950441261868d771958592cd7d8a29a9c453dada9904ba2112c72d5f89faeb48
.exe windows x86

0a0760ff7dc042c637702690eaa5bc35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__set_app_type
__p__commode
_vsnprintf
memcpy
calloc
realloc
atexit
_exit
wcslen
free
_cexit
_initterm
sprintf
__getmainargs
_acmdln
exit
_adjust_fdiv
__setusermatherr
_except_handler3
__p__fmode
_onexit

kernel32

GetCommandLineA
QueryPerformanceCounter
GetModuleHandleW
DisableThreadLibraryCalls
IsBadWritePtr
GetStartupInfoA
FreeLibrary
GetLastError
WriteFile
LoadLibraryExW
ReadFile
LCMapStringA
lstrcpyA
GetProcAddress
GlobalHandle
SetFileAttributesA
CreateProcessW
GetUserDefaultLangID
GetFileTime
VirtualFree
GetSystemInfo
GetDiskFreeSpaceA
FreeEnvironmentStringsW

comctl32

ImageList_SetImageCount
CreateStatusWindowA
CreatePropertySheetPageA
ImageList_Draw
ImageList_LoadImageW
ImageList_ReplaceIcon
InitializeFlatSB
ImageList_GetImageCount

ole32

OleFlushClipboard
CoRevokeClassObject
OleDraw
CoUninitialize
OleSetClipboard
CoTaskMemFree
OleGetClipboard
CoFreeUnusedLibraries
CoReleaseMarshalData
StringFromCLSID
CoLoadLibrary
CoCreateGuid
IsEqualGUID

advapi32

SetSecurityDescriptorOwner
CryptReleaseContext
RegOpenKeyExW
RegCloseKey
RegCreateKeyExA
RegQueryInfoKeyA
RegQueryInfoKeyW
RegFlushKey
RegEnumValueA
RegCreateKeyA
CryptHashData

gdi32

SetROP2
CreateCompatibleBitmap
SetBkMode
GetMapMode
CreateHalftonePalette
OffsetRgn
Escape
GetViewportExtEx

oleaut32

SafeArrayCreate
SetErrorInfo
VariantInit
LoadTypeLib
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayPtrOfIndex
SysFreeString
VariantClear
SysAllocStringLen
SafeArrayGetElement

user32

UnregisterClassA
GetClientRect
MessageBoxA
InvalidateRect
GetForegroundWindow
RegisterClassA
GetWindow
InflateRect
wsprintfA

Sections

.text
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a0760ff7dc042c637702690eaa5bc35

Headers

File Characteristics

Imports

msvcrt

kernel32

comctl32

ole32

advapi32

gdi32

oleaut32

user32

Sections

.text Size: 50KB - Virtual size: 49KB

.data Size: 23KB - Virtual size: 22KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 50KB - Virtual size: 49KB

.data
Size: 23KB - Virtual size: 22KB

.rsrc
Size: 16KB - Virtual size: 15KB