b0dda0f9c4956f5592409ed047cdd2166b6032bbc7a52b6112b9114af5620fe9

General

Target

b0dda0f9c4956f5592409ed047cdd2166b6032bbc7a52b6112b9114af5620fe9
Size

172KB
MD5

1fb08e66ac2cb9ee843ce73989fb058e
SHA1

b3219313a708601291100aaca32f4b04f37ae8fc
SHA256

b0dda0f9c4956f5592409ed047cdd2166b6032bbc7a52b6112b9114af5620fe9
SHA512

b3eb0b729d2bd8879fdaae6e6e86128c187a631eec4eb9823528a11d116721779118c818e65be88965c5ee1bb83c9f76e966537a16827946639d22f5c371af60
SSDEEP

3072:/O+z2ZPBvuh7BfErtiVW1SYkVaf9JKSMb7767UwRsEM8ZfjiEqTU:G2coLVW1WeLYv76rsEM8Z4T

Score

N/A

Malware Config

Signatures

Files

b0dda0f9c4956f5592409ed047cdd2166b6032bbc7a52b6112b9114af5620fe9
.exe windows x86

a052d358853843ed66bca6ab84dca69b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

ShellExecuteA
Shell_NotifyIconA

shlwapi

StrRetToStrA
PathIsFileSpecA
PathIsContentTypeA
SHCreateStreamOnFileEx
PathAppendA
PathCreateFromUrlW

kernel32

InterlockedDecrement
FindAtomW
GetCurrentThreadId
GlobalHandle
GlobalLock
lstrlenA
InterlockedIncrement
lstrlenW
InterlockedExchange
HeapSetInformation
DeleteCriticalSection
InitializeCriticalSection
TlsSetValue
TlsAlloc
SetLastError
CreateFileW
TlsGetValue
lstrcmpW
EnumResourceNamesA
SetLastError
LeaveCriticalSection
TlsFree
WaitForSingleObject
GlobalAlloc
GetComputerNameW
GetTickCount
CloseHandle
RaiseException
EnterCriticalSection
FlushInstructionCache
GlobalUnlock
SetUnhandledExceptionFilter
MulDiv
GetStringTypeA
LocalAlloc
MultiByteToWideChar
FormatMessageW
GetCurrentProcess
GetOEMCP
GetLocaleInfoW
GlobalFree
WideCharToMultiByte

oleacc

CreateStdAccessibleObject

Sections

.text
Size: 88KB - Virtual size: 480KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a052d358853843ed66bca6ab84dca69b

Headers

File Characteristics

Imports

shell32

shlwapi

kernel32

oleacc

Sections

.text Size: 88KB - Virtual size: 480KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 80KB - Virtual size: 80KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 88KB - Virtual size: 480KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 80KB - Virtual size: 80KB

.rsrc
Size: 512B - Virtual size: 4KB