b53adfbde3576da0e604b7b4ada762197f5c6a39a892fe164f7f24d5f22cad2d

Sharing

Copy URL Twitter E-mail

General

Target

b53adfbde3576da0e604b7b4ada762197f5c6a39a892fe164f7f24d5f22cad2d
Size

86KB
MD5

3798ddded98cfdb1731d9505b104e9d6
SHA1

5e4f58126c2f374d1f682fa80fa57a95c6b65dfa
SHA256

b53adfbde3576da0e604b7b4ada762197f5c6a39a892fe164f7f24d5f22cad2d
SHA512

c8e2787962ade682e42b5d4078b04970705d8c465b4b2d7d51292a800bc7498ac7a4dc76b33e460762f8f03b788be0083c0f3ae2789a84242a3e981c392831e5
SSDEEP

1536:SzZNuyTfNoiurOXVXn1ys+4BVLkpCJFoJN30H00ygkmtj8LtAd:SzZhurOF31yOkp6+DkBmmt44

Score

N/A

Malware Config

Signatures

Files

b53adfbde3576da0e604b7b4ada762197f5c6a39a892fe164f7f24d5f22cad2d
.exe windows x86

e31f36aeb1da09aef870211bcbdebfa2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
__set_app_type
_strnicmp
_adjust_fdiv
free
_exit
__setusermatherr
_initterm
getenv
calloc
__p___initenv
__p__fmode
fputs
fflush
_vsnprintf
__getmainargs
_except_handler3
_controlfp
_XcptFilter
strncpy
signal
malloc
strlen
fputc
fclose

kernel32

InterlockedDecrement
GetCommandLineW
GetModuleHandleW
CreateDirectoryA
VirtualProtectEx
GlobalLock
FileTimeToSystemTime
GetProcAddress
FreeEnvironmentStringsA
MulDiv
SetLastError
WaitForSingleObject
GetProcessHeap
LCMapStringW
GetFileType
GetCPInfo
CopyFileA
FileTimeToLocalFileTime
QueryPerformanceCounter
RemoveDirectoryA
GetWindowsDirectoryA
GetFileAttributesA

user32

IsWindowEnabled
ReleaseCapture
IsRectEmpty
GetSysColorBrush
GetMenu
RegisterClassA
UpdateWindow
LoadCursorA
GetMessageA

advapi32

EqualSid
OpenProcessToken
RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
QueryServiceStatus
CopySid
RegEnumKeyA
AddAccessAllowedAce
RegCreateKeyExA
CryptGenRandom
AdjustTokenPrivileges
CryptDestroyHash

comctl32

ImageList_GetIcon
CreateStatusWindowA
ImageList_AddMasked
ImageList_Create
ImageList_GetBkColor
ImageList_SetDragCursorImage
InitCommonControlsEx
CreateToolbarEx

ole32

CoRegisterClassObject
ReleaseStgMedium
IsAccelerator
OleUninitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
RegisterDragDrop
CoUninitialize
CoInitializeEx

gdi32

BitBlt
UnrealizeObject
CopyMetaFileW
DeleteEnhMetaFile
EnumMetaFile
CreateFontIndirectA
CreateCompatibleDC
CopyEnhMetaFileA
GetBitmapBits
AddFontResourceA
Ellipse
GetBkMode
SetDIBits
CreatePen
CreateCompatibleBitmap

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e31f36aeb1da09aef870211bcbdebfa2

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

comctl32

ole32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 61KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 61KB

.rsrc
Size: 10KB - Virtual size: 10KB