a91c4182f5819ee912998caeb46e4c79496c4fc98911230f55158a180c05ee44

Sharing

Copy URL Twitter E-mail

General

Target

a91c4182f5819ee912998caeb46e4c79496c4fc98911230f55158a180c05ee44
Size

98KB
MD5

852b61be7bbbd0624dd8b70af6cbf6d8
SHA1

429a8d82814bff8c6153c9087558192cfb81ead7
SHA256

a91c4182f5819ee912998caeb46e4c79496c4fc98911230f55158a180c05ee44
SHA512

6e064f792d19b212f6d10f61459b564e6b77630a4a2d80e86d5d7c8d8b286c525c36129de9352c1493eba76142e653e8d123e0a4060113e0c3f721bd27e3d15b
SSDEEP

1536:e/5TzS9i8ZsIAZNM0/YWeDQGtpLBZE5xsCtU7G58MFa0XmJkw62C95z+bsnfRJS:kS9i8ZspEHDQGthksfQ8M1WO6szS

Score

N/A

Malware Config

Signatures

Files

a91c4182f5819ee912998caeb46e4c79496c4fc98911230f55158a180c05ee44
.exe windows x86

ffd8659d3cefffa60196ecc064b053f0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
DeviceIoControl
GetCurrentThreadId
GetLocalTime
GetPrivateProfileStringA
GetNumberFormatA
GetVersionExA
RemoveDirectoryA
FileTimeToSystemTime

msvcrt

__dllonexit
__getmainargs
__p__commode
_stricmp
wcslen
__setusermatherr
__p__environ
_controlfp
_setmode
atoi
fwrite
free
_adjust_fdiv
__p___initenv
strncpy
_exit
_XcptFilter
sprintf
_onexit
memcpy
_except_handler3
calloc
_vsnprintf
sinh
__p__fmode
__set_app_type
_initterm

comdlg32

GetOpenFileNameA

user32

FillRect
SendDlgItemMessageA
IsRectEmpty
FrameRect
SystemParametersInfoA
DestroyMenu
SetForegroundWindow
CharNextA
GetParent
PeekMessageA
GetMenuStringA
ShowOwnedPopups
SetDlgItemTextA
ClientToScreen
GetActiveWindow

gdi32

Polyline
RectInRegion
BeginPath
GetCurrentObject
PolyDraw
CreateRoundRectRgn
GetCharWidthW
SelectClipPath
GetDIBColorTable
GetMetaFileBitsEx
StretchBlt
LineTo
GetStretchBltMode
PolylineTo
CopyMetaFileW
SetDIBitsToDevice
CreateHatchBrush

comctl32

ImageList_GetImageInfo
ImageList_Write
ImageList_GetIconSize
InitCommonControls
ImageList_GetBkColor
ImageList_Replace
ImageList_SetBkColor
ImageList_SetOverlayImage
ImageList_Destroy
ImageList_GetImageCount
ImageList_DragLeave
ImageList_LoadImageW

ole32

PropVariantClear
CoRegisterClassObject
DoDragDrop
ReleaseStgMedium
CoCreateInstance
CreateStreamOnHGlobal
IIDFromString
OleSetMenuDescriptor
CoFreeUnusedLibraries
CLSIDFromString

advapi32

AddAccessAllowedAce
RegEnumValueA
LookupPrivilegeValueW
InitiateSystemShutdownA
RegSetValueExA
GetSecurityDescriptorDacl
SetSecurityDescriptorGroup
RegSetValueExW
CryptHashData
RegQueryValueA
InitializeSecurityDescriptor
RegCreateKeyExA
AdjustTokenPrivileges

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ffd8659d3cefffa60196ecc064b053f0

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

gdi32

comctl32

ole32

advapi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 36KB

.rsrc Size: 29KB - Virtual size: 28KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 36KB

.rsrc
Size: 29KB - Virtual size: 28KB