a32d4e775e4bfc52ecc9d443c1aa7087eb91fc48690b98c106aa53f5da45c538

General

Target

a32d4e775e4bfc52ecc9d443c1aa7087eb91fc48690b98c106aa53f5da45c538
Size

158KB
MD5

374c64746eb7d298d27151c84ef64f67
SHA1

14f778b0483088c2eae754ded9eac78ab26f60f2
SHA256

a32d4e775e4bfc52ecc9d443c1aa7087eb91fc48690b98c106aa53f5da45c538
SHA512

2568e722fed203e02a4711e04a06479a63a1530d92cd5c0ed0138fb0becc2e7cd95d341b2a86bd9c0a8d7ce92a2fcce662b7154e0a8770b8239d5f6a465f0d2e
SSDEEP

3072:v6abBhHK3L4cQGKAZi1bsKnMau3cJbymwO2h3w67hBy8PYDE98l/:v6Cq309VAUVXnMagctGOWw67TD98h

Score

N/A

Malware Config

Signatures

Files

a32d4e775e4bfc52ecc9d443c1aa7087eb91fc48690b98c106aa53f5da45c538
.exe windows x86

cb5b7f41e8358c7459ffb32b78f0d1dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

RpcStringFreeA
RpcBindingFromStringBindingA
RpcStringBindingComposeA
NdrClientCall
RpcBindingSetAuthInfoA
UuidCreate
UuidToStringA
RpcStringFreeW

shlwapi

PathIsUNCW

kernel32

GetVersionExA
GetPrivateProfileStringW
GetFileAttributesW
GetModuleFileNameW
GetModuleHandleW
SuspendThread
WaitForMultipleObjects
CreateEventW
FindNextFileW
OutputDebugStringW

user32

CharPrevW
CharNextW
LoadStringW
MessageBoxW
IsDlgButtonChecked
SetFocus
GetDlgItem
CheckRadioButton
DialogBoxParamW
GetDlgItemTextW
MessageBoxExW

gdi32

DeleteObject

advapi32

RegCreateKeyA
RegCloseKey
RegSetValueA
RegSetValueExW
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA

gdiplus

GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat

ole32

CoTaskMemAlloc
OleIsRunning
IIDFromString
StgCreateDocfile
CoInitialize
CoTaskMemFree

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb5b7f41e8358c7459ffb32b78f0d1dc

Headers

File Characteristics

Imports

rpcrt4

shlwapi

kernel32

user32

gdi32

advapi32

gdiplus

ole32

Sections

.text Size: 131KB - Virtual size: 131KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 23KB - Virtual size: 22KB

.reloc Size: 512B - Virtual size: 262B

.text
Size: 131KB - Virtual size: 131KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 23KB - Virtual size: 22KB

.reloc
Size: 512B - Virtual size: 262B