d461aae8c4fc4f5a645833c40c42cd0caf37733fa10413af86cee27d0f4f35ef

Sharing

Copy URL Twitter E-mail

General

Target

d461aae8c4fc4f5a645833c40c42cd0caf37733fa10413af86cee27d0f4f35ef
Size

124KB
MD5

aee7e02f42d86f27f5214336a75b1dee
SHA1

51a0524dd0010d016f194d72501c59dc95a3c819
SHA256

d461aae8c4fc4f5a645833c40c42cd0caf37733fa10413af86cee27d0f4f35ef
SHA512

67c3c3802e99f2d71498af4c3c1b7d780319f2792a70ca41500d3ddaf94071bd991c65b1d318768e8afa476afdf947b6d4fa348492c282b30d2ffb5339dcf570
SSDEEP

3072:ueJ+cpe8NV7pqWrkhhP4guwkXEdysOds00i+kl:ve8NV7pbhg8UdysZQL

Score

N/A

Malware Config

Signatures

Files

d461aae8c4fc4f5a645833c40c42cd0caf37733fa10413af86cee27d0f4f35ef
.exe windows x86

43898daafa29f65ad2ad8f87b4e1fb20

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

EqualSid
RegConnectRegistryA
OpenSCManagerW
SetSecurityInfo
RegDeleteKeyA

comctl32

ImageList_DragLeave
InitCommonControlsEx
ImageList_Draw
ImageList_DragShowNolock
ImageList_DrawEx

user32

AppendMenuA
DdeUninitialize
AdjustWindowRectEx
CharUpperBuffA
DestroyMenu
EndDialog
CreateDialogIndirectParamA
EndDeferWindowPos
DestroyCaret
EnableWindow
FillRect
CharUpperBuffW
GetMessageTime
CreateIcon
GetWindowLongW
GetMenuItemInfoA
GetDlgItem
GetSystemMetrics
GetParent
GetMessageA
FindWindowExA
MessageBoxA
GetWindowRect
HideCaret
MapVirtualKeyA
SetWindowTextA
PtInRect
GetWindowLongA
RegisterClipboardFormatA
SendMessageTimeoutA
ToUnicode
SetWindowsHookExA
SetCapture
MessageBeep
RegisterWindowMessageA
InvalidateRgn

mpr

WNetOpenEnumA
WNetCloseEnum
WNetGetConnectionW
WNetEnumResourceA
WNetGetConnectionA

wsock32

WSAStartup

ole32

CoCreateInstance
OleGetClipboard
StringFromCLSID
RevokeDragDrop
DoDragDrop

msvcrt

malloc
wcschr
isdigit
strncmp
wcsncmp

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

msvfw32

MCIWndCreateA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA
EnumPrintersA

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 184KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: - Virtual size: 16B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43898daafa29f65ad2ad8f87b4e1fb20

Headers

File Characteristics

Imports

advapi32

comctl32

user32

mpr

wsock32

ole32

msvcrt

version

msvfw32

winspool.drv

Sections

.text Size: 3KB - Virtual size: 3KB

.data Size: 113KB - Virtual size: 184KB

.idata Size: 2KB - Virtual size: 2KB

.tls Size: - Virtual size: 16B

.rdata Size: 512B - Virtual size: 24B

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 3KB - Virtual size: 3KB

.data
Size: 113KB - Virtual size: 184KB

.idata
Size: 2KB - Virtual size: 2KB

.tls
Size: - Virtual size: 16B

.rdata
Size: 512B - Virtual size: 24B

.rsrc
Size: 3KB - Virtual size: 3KB