84199f46609e7bcc9a0d16d0ea6d46e0f5c6df24a2e8cee6a6e78f4e25ef56ef

Sharing

Copy URL Twitter E-mail

General

Target

84199f46609e7bcc9a0d16d0ea6d46e0f5c6df24a2e8cee6a6e78f4e25ef56ef
Size

106KB
MD5

d329b52e23bd156b7221a9f9789ad111
SHA1

89ca3d978a83f2a1cf0ccea39ba2bd7d70f6bf0b
SHA256

84199f46609e7bcc9a0d16d0ea6d46e0f5c6df24a2e8cee6a6e78f4e25ef56ef
SHA512

ba59b3e00fa296b43d824d33805e38774ccba343e1acbafb7a24cbd4f3843d18c8bed16044f0cc183636e2fd00df63d0ff8765be925696e5d224cbc18b87b576
SSDEEP

1536:afQg04WRu4T1OMqLDYzyWHaGxjj60TYq9jmVHAL/MZFENlk/EyGtZqvbq:EQg0Lo4tl3BeuYKW9aQGtZwbq

Score

N/A

Malware Config

Signatures

Files

84199f46609e7bcc9a0d16d0ea6d46e0f5c6df24a2e8cee6a6e78f4e25ef56ef
.exe windows x86

676d4844793c52958c774f72d35eaeb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fwrite
fflush
__set_app_type
_exit
strlen
_adjust_fdiv
_except_handler3
strchr
fread
__p___initenv
calloc
sqrt
fclose
realloc
_controlfp
_XcptFilter
fputs
__setusermatherr
abort
_initterm
__getmainargs
__p__fmode
fopen
memcpy
__p__commode
free

comdlg32

GetOpenFileNameA

kernel32

lstrcmpiW
GetEnvironmentStringsW
GetLocaleInfoA
VirtualProtectEx
LocalAlloc
GetWindowsDirectoryA
InterlockedIncrement
IsBadWritePtr
GetNumberFormatA
DuplicateHandle
lstrcmpiA
IsValidCodePage
GetModuleFileNameA
CompareStringA
WriteConsoleA
GetSystemTime
FreeEnvironmentStringsA
WaitForMultipleObjects
EnumCalendarInfoA

user32

EnableWindow
SetActiveWindow
EndPaint
SetRect
SetDlgItemTextA
WindowFromPoint
SendMessageA
GetWindowLongA
DestroyIcon
LoadIconA
SetForegroundWindow
SetWindowPos
DrawFrameControl

gdi32

GetTextExtentPoint32A
GetSystemPaletteEntries
GetNearestColor
PolyBezierTo
SetBrushOrgEx
StretchBlt
ScaleViewportExtEx
ExtEscape
CloseEnhMetaFile
StartPage
ExtTextOutW
GetEnhMetaFileBits
SetBkColor

advapi32

OpenProcessToken
RegEnumKeyExW
RevertToSelf
RegFlushKey
RegDeleteKeyW
RegCreateKeyExW
CopySid
RegOpenKeyExW
RegQueryInfoKeyW
GetSecurityDescriptorDacl

ole32

OleSetMenuDescriptor
IIDFromString
OleSetClipboard
CoSetProxyBlanket
CoTaskMemRealloc
CLSIDFromProgID
OleIsCurrentClipboard
StgOpenStorage
OleFlushClipboard
CoUninitialize
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
CoRegisterClassObject

comctl32

ImageList_EndDrag
InitializeFlatSB
ImageList_SetDragCursorImage
CreateToolbarEx
ImageList_DragShowNolock
ImageList_GetIconSize
InitCommonControlsEx
CreateStatusWindowA
PropertySheetA
PropertySheetW
ImageList_Replace

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

676d4844793c52958c774f72d35eaeb1

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

gdi32

advapi32

ole32

comctl32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 25KB - Virtual size: 24KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 25KB - Virtual size: 24KB