b671782c3da7d33e62aa3898154799000495818b510c4c980760b6fb6f207baa

Sharing

Copy URL Twitter E-mail

General

Target

b671782c3da7d33e62aa3898154799000495818b510c4c980760b6fb6f207baa
Size

106KB
MD5

69b95bcaadd55e4bf33764f40bbdcf25
SHA1

cbc56a10da574240d6894b4fdab7c48490094532
SHA256

b671782c3da7d33e62aa3898154799000495818b510c4c980760b6fb6f207baa
SHA512

6fb3e5b83d2459b8c243d1cd21433825f84aa9a42828ed41482f1210213bcc47654ce1fcd9ff643d50bafc6c5466db96bc5748a0784df7a7d174a18c28b12cb2
SSDEEP

1536:VNs2PnW4jMdoi/H6+BpiBdDvkYRTRHqhcU0CgxBQKP9xLF5RdwaMPcmZ52O:D1PW7ja+BgBtTRTlq7gxb9VFLdnMkw59

Score

N/A

Malware Config

Signatures

Files

b671782c3da7d33e62aa3898154799000495818b510c4c980760b6fb6f207baa
.exe windows x86

be4995c7c44cb1373f19d5e1ac511c79

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

strcpy
_exit
__p__environ
__p__commode
sinh
_XcptFilter
fread
__setusermatherr
_except_handler3
__p___initenv
__p__fmode
atoi
_initterm
fprintf
fwrite
free
exit
__getmainargs
_adjust_fdiv
calloc
fputc
__set_app_type
strstr
_controlfp
_onexit

comdlg32

GetOpenFileNameA

kernel32

GetCommandLineW
CopyFileA
LocalAlloc
GetDriveTypeA
lstrcatA
GetOEMCP
IsDebuggerPresent
TerminateProcess
GetNumberFormatA
GetStdHandle
GetSystemDirectoryW
GetCurrentThreadId

user32

SetDlgItemTextA
GetMenu
DialogBoxParamA
RemovePropA
SetCursor
GetActiveWindow
GetSysColor
GetDlgItem
PostMessageA
OffsetRect
EndDialog
GetParent
WindowFromPoint

comctl32

ImageList_GetBkColor
CreateStatusWindowA
DestroyPropertySheetPage
CreatePropertySheetPageA
PropertySheetA
ImageList_SetDragCursorImage
PropertySheetW
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_Write
ImageList_DragShowNolock
CreateToolbarEx

gdi32

SetDIBits
EndDoc
DeleteMetaFile
SetWindowExtEx
PatBlt
LineTo
Escape
CopyEnhMetaFileA
GetStretchBltMode
SetMetaFileBitsEx
CreateEnhMetaFileA
GetTextFaceW
SetTextCharacterExtra
SetBkMode
CreateDIBPatternBrushPt
GetMetaFileBitsEx

advapi32

RegDeleteValueW
RegCreateKeyA
OpenServiceW
OpenServiceA
CryptDestroyHash
RegOpenKeyExA
SetSecurityDescriptorDacl
CryptAcquireContextA
RegDeleteKeyA
CryptGenRandom
CloseServiceHandle
RegDeleteValueA

ole32

PropVariantClear
OleUninitialize
IIDFromString
OleSetClipboard
CoReleaseMarshalData
CoInitializeEx
CoSetProxyBlanket
OleRun
RegisterDragDrop
CreateILockBytesOnHGlobal
CoTaskMemFree

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be4995c7c44cb1373f19d5e1ac511c79

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

gdi32

advapi32

ole32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 31KB - Virtual size: 31KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 31KB - Virtual size: 31KB