e68efa787e0b7f40414d6c7559881ea68cee8babde68207500655a3810e747d5

Sharing

Copy URL

Twitter E-mail

General

Target

e68efa787e0b7f40414d6c7559881ea68cee8babde68207500655a3810e747d5
Size

90KB
MD5

b3a3c648b5688225cc3f4ee79c694a08
SHA1

158ad8b2d8e19803e286f87c69dd25f883cd150b
SHA256

e68efa787e0b7f40414d6c7559881ea68cee8babde68207500655a3810e747d5
SHA512

e00cd5c775ac336e8f814e9ca37339368577175b87ad60e0cdce7985c53f642433c71ab20756c4cf7e152166b8c1a62bccea2ac02ddc329a560e815fc1a1f356
SSDEEP

1536:T8pXcai2wkzG8QfT7Zie+2uKdqLLhiZwyGne+wi43mQ3Y4vscqrDhvyxmvUCKilZ:TesMHwN7hqLLhAwyT1X3m99vyOl7

Score

N/A

Malware Config

Signatures

Files

e68efa787e0b7f40414d6c7559881ea68cee8babde68207500655a3810e747d5
.exe windows x86

4efe34f1a5209fec5b8b8a938a02e452

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_errno
_cexit
sqrt
_snprintf
_except_handler3
atoi
__set_app_type
_initterm
strncpy
calloc
__p__commode
__p__fmode
__setusermatherr
__getmainargs
_adjust_fdiv
_acmdln
_exit
free

comdlg32

GetOpenFileNameA

kernel32

GetFileType
IsBadReadPtr
SetLastError
GetModuleFileNameA
GetDateFormatA
GetNumberFormatA
CreateProcessA
OutputDebugStringA
GetStartupInfoA
GetModuleHandleW
GetConsoleOutputCP
FreeEnvironmentStringsW
FileTimeToLocalFileTime
GetTimeZoneInformation
lstrcmpiA

user32

SystemParametersInfoA
SendMessageA
SetWindowPos
SetPropA
OffsetRect
GetMenuItemCount
GetSysColor
EnumThreadWindows
SetCursor
IsDialogMessageA
GetWindowLongA
RegisterWindowMessageA
WinHelpA
IsWindowEnabled
SetDlgItemTextA
GetMessagePos

comctl32

ImageList_LoadImageW
CreateToolbarEx
ImageList_LoadImageA
ImageList_Draw
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_GetBkColor
InitCommonControlsEx
InitCommonControls
CreatePropertySheetPageW
ImageList_SetIconSize
ImageList_Write

gdi32

SetDIBits
PtVisible
EnumFontFamiliesW
SetMapMode
SetStretchBltMode
Chord
SetBkMode
MoveToEx
PolyDraw
StartDocW
RectVisible
GetPixel
GdiFlush

ole32

RegisterDragDrop
CreateBindCtx
CoRegisterClassObject
OleRun
CoRevokeClassObject
CoReleaseMarshalData
CoInitialize
CreateStreamOnHGlobal
OleGetClipboard
StgCreateDocfileOnILockBytes
CoTaskMemRealloc
CoGetInterfaceAndReleaseStream
RevokeDragDrop
CoCreateGuid
ProgIDFromCLSID
OleIsCurrentClipboard
CoTaskMemAlloc
DoDragDrop

advapi32

InitializeSecurityDescriptor
RegFlushKey
RegEnumKeyExA
GetSecurityDescriptorDacl
RegQueryValueExW
AllocateAndInitializeSid
CryptReleaseContext
LookupPrivilegeValueA
RegEnumKeyExW
RegEnumValueW

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4efe34f1a5209fec5b8b8a938a02e452

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

gdi32

ole32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 48KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 5KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 48KB

.rsrc
Size: 18KB - Virtual size: 18KB