bcdecd3740043fcb6f9142fb69e8d81c53f32b00dfc1e9db9df6d2857022551b

Sharing

Copy URL Twitter E-mail

General

Target

bcdecd3740043fcb6f9142fb69e8d81c53f32b00dfc1e9db9df6d2857022551b
Size

123KB
MD5

7738919b0bdab4751d1423a1c47f531b
SHA1

9d3c56c9904bfb71f430ea4a25c0c810c85ecfda
SHA256

bcdecd3740043fcb6f9142fb69e8d81c53f32b00dfc1e9db9df6d2857022551b
SHA512

7003d4471c2fa29316f511ec52b056a5dba09164982bdd0bd67916a5c7f34444e6454703ffb7f5bcd109981b16b4c483738e11916d74f30492686ddd822358d7
SSDEEP

3072:uENUJz3TAB3hK8qJkBzUwLhhYi7Nf3G5tvC:8JzDbhqB5fItq

Score

N/A

Malware Config

Signatures

Files

bcdecd3740043fcb6f9142fb69e8d81c53f32b00dfc1e9db9df6d2857022551b
.exe windows x86

226218ef2710553c2f3c6e074029979a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fread
fseek
_adjust_fdiv
fputs
strcpy
fwrite
__set_app_type
strlen
printf
__getmainargs
_vsnprintf
_exit
remove
fopen
_onexit
strcmp
strncmp
fclose
atoi
__setusermatherr
_strnicmp
exit
_except_handler3
malloc
_XcptFilter
__p__commode
free
_initterm
_acmdln
__p__fmode

kernel32

SetThreadLocale
GetDriveTypeA
lstrlenW
LoadLibraryA
IsDebuggerPresent
GetProcAddress
FreeEnvironmentStringsA
WideCharToMultiByte
GetVersionExA
GetFileAttributesW
GetModuleHandleW
GetTickCount

oleaut32

SafeArrayPutElement
SysAllocStringByteLen
SafeArrayPtrOfIndex
SysStringLen
SafeArrayGetUBound
VariantInit
CreateErrorInfo
SysFreeString
VariantCopyInd
SetErrorInfo
VariantCopy
SafeArrayRedim

ole32

CoDisconnectObject
CLSIDFromProgID
RevokeDragDrop
CreateBindCtx
OleRun
StringFromCLSID
CoReleaseMarshalData
PropVariantClear
StringFromIID
IsEqualGUID
CoTaskMemRealloc
OleSetMenuDescriptor
StgOpenStorageOnILockBytes

comctl32

ImageList_GetImageInfo
ImageList_GetImageCount
CreateStatusWindowA
ImageList_Draw
CreateToolbarEx
ImageList_DragShowNolock
ImageList_Add
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_GetIcon

advapi32

FreeSid
OpenThreadToken
InitializeSecurityDescriptor
RegFlushKey
RegEnumValueA
RegEnumKeyExA
CryptHashData
CheckTokenMembership
CopySid

user32

ClientToScreen
OpenClipboard
IsIconic
TrackPopupMenu
GetMenu
PeekMessageA
GetPropA
EqualRect

gdi32

Arc
SetWinMetaFileBits
GetViewportOrgEx
LineDDA
PlayMetaFile
EndPath
ExtTextOutA
GetEnhMetaFilePaletteEntries
CreateSolidBrush
RoundRect
Chord
GetEnhMetaFileHeader

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetSpecialFolderPathA
SHGetFileInfoA
ExtractIconExA
ExtractAssociatedIconW
SHFileOperationW
ShellExecuteExA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

226218ef2710553c2f3c6e074029979a

Headers

File Characteristics

Imports

msvcrt

kernel32

oleaut32

ole32

comctl32

advapi32

user32

gdi32

shell32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 50KB - Virtual size: 60KB

.rsrc Size: 67KB - Virtual size: 66KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 50KB - Virtual size: 60KB

.rsrc
Size: 67KB - Virtual size: 66KB