e277b7d5c686f171311eca4f9fb234af04d5111c571e48f969edc07f00eda9bb

Sharing

Copy URL

Twitter E-mail

General

Target

e277b7d5c686f171311eca4f9fb234af04d5111c571e48f969edc07f00eda9bb
Size

108KB
MD5

06182e9fce24e549c6c13b34f8cd0288
SHA1

bc25ad511336756d3716d7e92865b9951035954d
SHA256

e277b7d5c686f171311eca4f9fb234af04d5111c571e48f969edc07f00eda9bb
SHA512

2f47e912b7ca8e39c5017a7b1f10b17e6eb6dc69504bdd72961167b5fd0de73d7d0bd04ceb24f97049f440886ec1e0a4fe2e9f9f46b0862486f81fdc316ee0aa
SSDEEP

1536:Y0Szn4peMB33tImd/hi4pRAWN2Y0OCy9PbcypXCWS5a9hc0uAS2ra30Yolz:Y0bpPgP40a0Fy9Pbcyp7Sch/fbaS

Score

N/A

Malware Config

Signatures

Files

e277b7d5c686f171311eca4f9fb234af04d5111c571e48f969edc07f00eda9bb
.exe windows x86

c28a16231855961abc6d269ca3f73621

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

calloc
_exit
_controlfp
sinh
__p__commode
free
_adjust_fdiv
__set_app_type
fputs
fread
fputc
_XcptFilter
__setusermatherr
__p___initenv
__p__fmode
__p__environ
_initterm
_vsnprintf
_except_handler3
exit
wcslen
strlen
__getmainargs

comdlg32

GetOpenFileNameA

kernel32

GetLastError
GetDateFormatA
UnhandledExceptionFilter
GetNumberFormatA
IsBadWritePtr
GetModuleFileNameA
RemoveDirectoryA
lstrcmpiA
GetShortPathNameA
GetFullPathNameA
CompareStringW
GlobalAlloc
GetTempFileNameA
GlobalReAlloc
CreateDirectoryA
GetCommandLineW
GetStdHandle
RaiseException
ExitProcess
GetSystemDirectoryA
GetCurrentThreadId
GetOEMCP
CreateProcessW
WideCharToMultiByte

user32

GetWindowTextA
ScrollWindow
SetDlgItemTextA
GetParent
EndPaint
wsprintfA
CheckMenuItem
GetCapture
SetRect
CreateWindowExA
CreatePopupMenu
GetScrollPos
GetDesktopWindow
GetWindowThreadProcessId
OpenClipboard
GetFocus
AdjustWindowRectEx
FindWindowA
RegisterClassA
PeekMessageA
GetDCEx
IsZoomed

gdi32

SetBkMode
SetArcDirection
GetRgnBox
CreateFontIndirectW
SetEnhMetaFileBits
SetMapMode
GetCharacterPlacementA
Rectangle
CreateICW

advapi32

RegSetValueExW
InitializeAcl
SetSecurityDescriptorDacl
RegQueryValueExA
CheckTokenMembership
RegOpenKeyExW
OpenServiceA
RegCreateKeyExA
SetSecurityDescriptorOwner
GetLengthSid
GetTokenInformation
CryptReleaseContext
CloseServiceHandle
EqualSid
RegCreateKeyExW
RegQueryInfoKeyA
CryptGenRandom

comctl32

ImageList_GetIconSize
ImageList_GetBkColor
ImageList_Add
ImageList_EndDrag
ImageList_SetDragCursorImage
CreatePropertySheetPageA
ImageList_Remove
DestroyPropertySheetPage
ImageList_SetOverlayImage
ImageList_Write

ole32

IIDFromString
ReleaseStgMedium
StringFromIID
CoGetMalloc
CoReleaseMarshalData

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c28a16231855961abc6d269ca3f73621

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

comctl32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 30KB - Virtual size: 108KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 30KB - Virtual size: 108KB