ca204f6b17b08a6ad0a91e7a084ea9807db416dec5e43ef7d2396a47f1d05d2f

Sharing

Copy URL Twitter E-mail

General

Target

ca204f6b17b08a6ad0a91e7a084ea9807db416dec5e43ef7d2396a47f1d05d2f
Size

136KB
MD5

8398c2adafa561511efee2fb8460374e
SHA1

28ae789a6ae844a5ee9a17731a6b2c83b5cfb60f
SHA256

ca204f6b17b08a6ad0a91e7a084ea9807db416dec5e43ef7d2396a47f1d05d2f
SHA512

7696b3d7b43c3276ce303ddee542a82a1f9947628055b3b703629afecdce32c1e3b660709abd5b710e59eeda9f10a6fc82a41d39e6ab006b72e5d663208a1278
SSDEEP

3072:xEidICXPzY/8M/qL03rxoTekj2xha+AKS7LLGi6Ije+oZM5is:eUrY/8cqi1za+cL+Gz

Score

N/A

Malware Config

Signatures

Files

ca204f6b17b08a6ad0a91e7a084ea9807db416dec5e43ef7d2396a47f1d05d2f
.exe windows x86

a1dc316ecf67baed4ed5d73127af594b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

SetErrorMode
CompareStringA
GetFileTime
GetModuleHandleA
WaitForMultipleObjects
InterlockedDecrement
GetStartupInfoA
VirtualProtect
InterlockedExchange

msvcrt

__set_app_type
pow
exit
log
_XcptFilter
_acmdln
wcscat
fwrite
_except_handler3
__getmainargs
_initterm
_adjust_fdiv
__p__commode
__p__fmode
fprintf
_beginthreadex
__setusermatherr

user32

PtInRect
SetPropA
CreateMenu
GetCursorPos
ShowOwnedPopups
CharLowerA
GetMenuStringA
ScreenToClient

version

VerInstallFileW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeW

advapi32

OpenServiceW
SetSecurityDescriptorOwner
RegFlushKey
RegQueryValueExW
OpenThreadToken
SetSecurityDescriptorDacl
RegDeleteValueA
RegCloseKey

gdi32

SetBkMode
CreateHatchBrush
GetRegionData
CopyEnhMetaFileA
CreateDIBPatternBrushPt
GetTextFaceW
ScaleViewportExtEx
GetPixel
Arc

comctl32

ImageList_Draw
InitializeFlatSB
ImageList_ReplaceIcon
ImageList_GetIcon
InitCommonControls
ImageList_SetIconSize

shell32

SHBrowseForFolder
FindExecutableW
Shell_NotifyIconW
SHGetPathFromIDListA
SHGetFileInfoA
SHGetSpecialFolderPathW
SHGetFolderPathW
DragFinish
ShellExecuteW

oleaut32

SysAllocStringByteLen
LoadTypeLib
SysFreeString
SetErrorInfo
VariantInit
GetErrorInfo

ole32

CreateItemMoniker
ProgIDFromCLSID
OleInitialize
PropVariantClear
RegisterDragDrop

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1dc316ecf67baed4ed5d73127af594b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

version

advapi32

gdi32

comctl32

shell32

oleaut32

ole32

Sections

.text Size: 63KB - Virtual size: 63KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 63KB - Virtual size: 63KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 23KB - Virtual size: 23KB