a2aaa7da89c27c4e01c2973d05e56a0e49dd236499f4212db256a183759060d5

Sharing

Copy URL Twitter E-mail

General

Target

a2aaa7da89c27c4e01c2973d05e56a0e49dd236499f4212db256a183759060d5
Size

82KB
MD5

8ace4c2de97ff189101fefe2812b80bb
SHA1

6049a270042f934a898f28edab2969ec3159c210
SHA256

a2aaa7da89c27c4e01c2973d05e56a0e49dd236499f4212db256a183759060d5
SHA512

57145adfb9769501b98411e740a8e6ec561d0b76bbb5f1e375120966b35d65a8eb909eb84d7151b285e0bd7c15046f01cd9e6e19176ea23acf1566ddaa1a65c6
SSDEEP

1536:4br3EYxtY1CDRhHkgDYg83ftvS4IbHFmGXqWfZm+IZY4IxTiqqWdMIdmAhyYKUho:4/EOtY1sE8Y/fkFXqSs+6BIhAgMwmAhY

Score

N/A

Malware Config

Signatures

Files

a2aaa7da89c27c4e01c2973d05e56a0e49dd236499f4212db256a183759060d5
.exe windows x86

3ca5da7386877cf1a1be118ca3a302d6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fputs
__p__commode
sqrt
_adjust_fdiv
_except_handler3
_errno
exit
__dllonexit
calloc
getenv
__getmainargs
atexit
__p__fmode
_cexit
_strnicmp
free
_initterm
_setmode
_exit
realloc
__setusermatherr
sprintf
__set_app_type
strrchr
_acmdln

kernel32

GetStringTypeW
GetFileTime
ReadFile
GetVersion
GetFileAttributesA
FreeEnvironmentStringsW
WideCharToMultiByte
lstrcmpiA
GetModuleHandleW
GetFileAttributesW
GetOEMCP
ExitProcess
lstrlenW
GetStringTypeExA
WriteFile
GetStartupInfoA
SystemTimeToFileTime
GetSystemTimeAsFileTime
CreateFileMappingA
FreeLibrary
VirtualFree

gdi32

GetPixel
EndPath
CreateCompatibleDC
GetWindowOrgEx
RealizePalette
GetDIBColorTable
SetDIBits
OffsetClipRgn
AbortDoc
GetDeviceCaps

ole32

CoInitialize
CoGetClassObject
CoRegisterMessageFilter
CoInitializeSecurity
CoTaskMemFree
ReleaseStgMedium
CoDisconnectObject
CoGetMalloc

user32

GetDCEx
GetMenuStringA
EmptyClipboard
FrameRect
DrawIconEx
DrawEdge
SetScrollInfo
DispatchMessageA
TranslateMessage
SetWindowsHookExA
GetScrollInfo
LoadStringA

advapi32

RegQueryValueA
RegOpenKeyW
GetUserNameA
RegFlushKey
RegQueryValueExA
RegDeleteKeyW
InitiateSystemShutdownA
DeleteService
RegCloseKey
RegEnumValueW
OpenProcessToken

comctl32

ImageList_GetIconSize
ImageList_DragEnter
ImageList_Destroy
ImageList_DragShowNolock
ImageList_Draw
ImageList_Create
ImageList_LoadImageA
ImageList_Replace

oleaut32

VariantClear
GetErrorInfo
SysFreeString
VariantCopy
SafeArrayGetElement
VariantInit
SysStringLen

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ca5da7386877cf1a1be118ca3a302d6

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

ole32

user32

advapi32

comctl32

oleaut32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 56KB - Virtual size: 56KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 56KB - Virtual size: 56KB

.rsrc
Size: 3KB - Virtual size: 2KB