ac2050cd389742bab109fc358dbcd4583e0463bbb6edf34f480d5f5f92d54d1b

Sharing

Copy URL Twitter E-mail

General

Target

ac2050cd389742bab109fc358dbcd4583e0463bbb6edf34f480d5f5f92d54d1b
Size

107KB
MD5

8d82c8195ad8ce6ec2b1b15629601913
SHA1

c4ffbf03445eb12247d3fb118779c823094eb1d9
SHA256

ac2050cd389742bab109fc358dbcd4583e0463bbb6edf34f480d5f5f92d54d1b
SHA512

d0777e87ce91cd3eb5057093db3a605ab37a6b19d5f4872bf3fb8db29feaa7df8dc1683be27891c32859eadc2d4dd27adb94518d0c86870cb2f179e9460aca6a
SSDEEP

1536:CtGtAE2907kx5Mxynki0pVii1j6dTwr9wX4LyCpPrbkaU7xpQeRSq9XfRHGh5MLI:CwtAEnpjl52CruX4Prb1CueJfRkgs

Score

N/A

Malware Config

Signatures

Files

ac2050cd389742bab109fc358dbcd4583e0463bbb6edf34f480d5f5f92d54d1b
.exe windows x86

962f1e65308d8dc353473190054765c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalReAlloc
IsBadWritePtr
GetEnvironmentVariableA
SetFilePointer
FileTimeToDosDateTime
GetStringTypeA
CompareStringW
ExitProcess
GetCurrentThreadId
GetTempFileNameA
GetNumberFormatA
IsDBCSLeadByte
IsValidCodePage

msvcrt

_errno
_controlfp
_iob
__set_app_type
_exit
__p__commode
calloc
free
__setusermatherr
__getmainargs
fflush
_XcptFilter
malloc
_except_handler3
sinh
fclose
__p__environ
_initterm
realloc
__p__fmode
__p___initenv
_write
_vsnprintf
_adjust_fdiv

comdlg32

GetOpenFileNameA

user32

SetDlgItemTextA
GetForegroundWindow
GetDC
EqualRect
PeekMessageA
SetWindowPlacement
EndPaint
UnhookWindowsHookEx
GetClassNameA
FillRect
LoadCursorA
IsZoomed
GetMessageA
SetScrollInfo
IsWindow
ReleaseDC

advapi32

CryptAcquireContextA
GetSecurityDescriptorDacl
RegOpenKeyW
RegSetValueExA
CryptDestroyHash
RegDeleteKeyA
OpenServiceA
RegEnumKeyW
OpenSCManagerA
InitializeSecurityDescriptor
DeregisterEventSource
RegCreateKeyExW
CryptReleaseContext

gdi32

GetTextCharsetInfo
CreateCompatibleBitmap
SetStretchBltMode
SelectObject
CreateMetaFileW
SetPixel
GetCurrentPositionEx
SetGraphicsMode
GetClipBox
LPtoDP
SaveDC

ole32

OleRun
CoCreateInstance
IsEqualGUID
OleGetClipboard
StgOpenStorageOnILockBytes
OleDraw
CoRegisterMessageFilter
OleUninitialize
IIDFromString
CoCreateGuid
CoTaskMemAlloc
ReleaseStgMedium
CoReleaseMarshalData
StgCreateDocfileOnILockBytes

comctl32

ImageList_LoadImageA
ImageList_Read
ImageList_SetImageCount
ImageList_Add
ImageList_LoadImageW
ImageList_Create
ImageList_SetIconSize
ImageList_SetBkColor
ImageList_Write
CreateStatusWindowA

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

962f1e65308d8dc353473190054765c0

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

advapi32

gdi32

ole32

comctl32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 37KB

.rsrc Size: 30KB - Virtual size: 29KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 37KB

.rsrc
Size: 30KB - Virtual size: 29KB