adb184e2943988abc0cb66f8eb9358c6aab2799c9b7a788b2c82b9069a5d875d

Sharing

Copy URL Twitter E-mail

General

Target

adb184e2943988abc0cb66f8eb9358c6aab2799c9b7a788b2c82b9069a5d875d
Size

110KB
MD5

fb22cf0401e71872e901ece3d74f3257
SHA1

20fe647c50fdf0233c20519552f1f720d0699f43
SHA256

adb184e2943988abc0cb66f8eb9358c6aab2799c9b7a788b2c82b9069a5d875d
SHA512

4e69f6ca56d3dcdd7e9f84dd5dda84d1356665b7e89eab3031411c8ee9e813c8b2e0718ea8ad76256798cebc4983f9f3653b16a3b6daf2045e4540f260ba0e87
SSDEEP

1536:FifK7SMWiQIwp5yfRKOfKTjyLK/oXtel4jqgHY3SWry:FMKfzw6/fWcKAXtWg43vry

Score

N/A

Malware Config

Signatures

Files

adb184e2943988abc0cb66f8eb9358c6aab2799c9b7a788b2c82b9069a5d875d
.exe windows x86

d8515c6be19da9174caa5de4c34d15e7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__p__commode
__getmainargs
__p__environ
__p___initenv
_exit
__p__fmode
_write
sinh
fputs
_initterm
_except_handler3
__setusermatherr
_XcptFilter
__set_app_type
_controlfp
_adjust_fdiv
strstr
exit
fclose
fprintf
abort
calloc
free

comdlg32

GetOpenFileNameA

kernel32

GetWindowsDirectoryA
OutputDebugStringA
GetSystemTime
GetCurrentThreadId
lstrcmpiA
OpenProcess
GetFullPathNameA
VirtualProtect
GetStartupInfoW
GetNumberFormatA
SetFileTime
GetLastError
FreeEnvironmentStringsA

user32

InvalidateRect
SetFocus
WinHelpA
RemoveMenu
MessageBoxA
EndPaint
GetDCEx
DrawIconEx
EndDialog
SetClassLongA
DrawMenuBar
SetDlgItemTextA
GetParent

gdi32

EnumFontFamiliesW
RemoveFontResourceA
GetWindowExtEx
PtVisible
GetTextExtentPointW
CreateDIBSection
CreateHatchBrush
GetDCOrgEx
SetPixel
SetPolyFillMode
PatBlt
RealizePalette
GetCurrentObject

ole32

CoInitializeSecurity
RegisterDragDrop
CoGetMalloc
StringFromGUID2
RevokeDragDrop
CreateBindCtx
CoGetClassObject
CoLoadLibrary
IsEqualGUID
StgOpenStorageOnILockBytes
StringFromCLSID

advapi32

AllocateAndInitializeSid
RegQueryValueExW
OpenThreadToken
SetSecurityDescriptorGroup
CheckTokenMembership
RegCreateKeyA
RegEnumKeyExA
RegQueryInfoKeyW
RegDeleteKeyA
IsValidSid
InitializeSecurityDescriptor
CryptReleaseContext
QueryServiceStatus
RegCreateKeyExA
DeregisterEventSource
EqualSid
CloseServiceHandle

comctl32

ImageList_DragLeave
ImageList_GetIconSize
ImageList_AddMasked
ImageList_Create
ImageList_SetDragCursorImage
ImageList_BeginDrag
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_Destroy
ImageList_DragShowNolock
CreateToolbarEx
ImageList_Remove
InitCommonControlsEx
ImageList_LoadImageW
InitCommonControls
ImageList_LoadImageA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8515c6be19da9174caa5de4c34d15e7

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

ole32

advapi32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 38KB

.rsrc Size: 31KB - Virtual size: 30KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 38KB

.rsrc
Size: 31KB - Virtual size: 30KB