97d164e288ef752be808ec52414eea241f50b5fc08a5f5e81d05cab4b2081273

Sharing

Copy URL Twitter E-mail

General

Target

97d164e288ef752be808ec52414eea241f50b5fc08a5f5e81d05cab4b2081273
Size

160KB
MD5

07e99fd11b08995b4f1744f703b1b470
SHA1

477edf88faeda3371c0ba59747b5b95785964769
SHA256

97d164e288ef752be808ec52414eea241f50b5fc08a5f5e81d05cab4b2081273
SHA512

403ca501ea8122bdacb5ba3c87edfeabf7c17ea610bffc292ab07e621e11504fce5f7ac1f72dd0eac7dbcef24514e60d75c3f44e5a4866510562171274e05e28
SSDEEP

1536:6tjnSsWE+neXQyaMqwNis4lgfEwzvvQgzLDfFNmz+RxtcToUrAGgobu5j:+WE+nGHNidlgMwz3QwL7/v0oA

Score

N/A

Malware Config

Signatures

Files

97d164e288ef752be808ec52414eea241f50b5fc08a5f5e81d05cab4b2081273
.exe windows x86

7c3c561cbc24c8799a689e0c20081afd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnableMenuItem
GetMessageA
EqualRect
UnhookWindowsHookEx
SetWindowPos
FrameRect
SetWindowTextA
GetSysColor
EnumWindows
GetSysColorBrush
PostQuitMessage
GetSubMenu
GetScrollPos

kernel32

GetSystemTime
FileTimeToSystemTime
GetThreadLocale
GetStartupInfoA
GetOEMCP
SetUnhandledExceptionFilter
ExitProcess
GetACP
GetTempPathA
GetFileAttributesA
RtlUnwind
GetCurrentProcessId
QueryPerformanceCounter
VirtualAllocEx
GetTimeZoneInformation
InterlockedExchange

gdi32

CopyEnhMetaFileA
SetViewportExtEx
CreateICW
DPtoLP
FillRgn
GetMapMode
ExcludeClipRect
CreateCompatibleBitmap
SelectClipPath

ole32

CoInitializeSecurity
DoDragDrop
CoRevokeClassObject
CoTaskMemRealloc
StgOpenStorage
CoCreateInstance
OleRun
StringFromGUID2
CoInitialize

advapi32

FreeSid
GetSecurityDescriptorDacl
AdjustTokenPrivileges
CryptHashData
RegCreateKeyExW
QueryServiceStatus
CheckTokenMembership
RegQueryValueExW
RegCreateKeyA
GetUserNameA

msvcrt

_flsbuf
_fdopen
__initenv
fflush
signal
_lock
_mbscmp
strcspn
strlen
__getmainargs
raise
puts
iswspace
_CIpow
_strdup
fprintf
__setusermatherr
strncpy

comctl32

InitCommonControls
ImageList_ReplaceIcon
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_GetIcon
ImageList_Write
ImageList_DrawEx
CreatePropertySheetPageA
ImageList_Destroy
ImageList_GetBkColor
ImageList_LoadImageW
ImageList_DragEnter

shell32

DoEnvironmentSubstW
DragQueryFileW
ExtractIconExW
ShellExecuteEx
DragQueryFileA
DragAcceptFiles
ShellExecuteW
SHBrowseForFolderA
ExtractIconW
CommandLineToArgvW
SHGetPathFromIDList

oleaut32

SafeArrayRedim
SafeArrayUnaccessData
VariantCopy
SysReAllocStringLen
SafeArrayCreate
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c3c561cbc24c8799a689e0c20081afd

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 36KB - Virtual size: 36KB

.data Size: 43KB - Virtual size: 42KB

.rsrc Size: 80KB - Virtual size: 100KB

.text
Size: 36KB - Virtual size: 36KB

.data
Size: 43KB - Virtual size: 42KB

.rsrc
Size: 80KB - Virtual size: 100KB