14d6f2f03b6a8f35a5e42463673ab35d8a5fd16123a51a7f94a565d436cb9ad1

Sharing

Copy URL

Twitter E-mail

General

Target

14d6f2f03b6a8f35a5e42463673ab35d8a5fd16123a51a7f94a565d436cb9ad1
Size

112KB
MD5

009e0c38258fb6418bc33a9276689676
SHA1

25fe6c895af330bec3ff654728b80faf097a6e83
SHA256

14d6f2f03b6a8f35a5e42463673ab35d8a5fd16123a51a7f94a565d436cb9ad1
SHA512

a224e7174e248d8ba477ae2949190a4e7f6aee4fb7ce9439e81c79725167e0f2a840d4ef620b78dfdac2064623bc7a4ab7cc8b9e00836f87d42a28c0dfebfceb
SSDEEP

1536:m5x9bSpT+fj6f6wQdjfvqD5O5IJvmP0iE3BoS6v5g5QpaJbyBN1VcKcLYTuY/:m4pT+5dzvm5JvswQ2mpaJmbVIK/

Score

N/A

Malware Config

Signatures

Files

14d6f2f03b6a8f35a5e42463673ab35d8a5fd16123a51a7f94a565d436cb9ad1
.exe windows x86

0acf5b142d20c06818b93633b5b9c0dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNumberFormatA
GetFileTime
GetPrivateProfileStringA
QueryPerformanceCounter
VirtualProtectEx
SetFileAttributesA
GetSystemTime
FileTimeToLocalFileTime
GetVersionExA
TerminateProcess
GetUserDefaultLCID
SetEnvironmentVariableA
GetTempFileNameA
GetACP
lstrcmpiW
InterlockedExchange
IsDBCSLeadByte

msvcrt

__p__commode
fread
_controlfp
_exit
fwrite
_except_handler3
_write
_XcptFilter
_adjust_fdiv
__p___initenv
free
atoi
__setusermatherr
_initterm
_vsnprintf
getenv
sqrt
memset
fflush
__set_app_type
calloc
strncpy
strrchr
__getmainargs
__p__fmode
strstr
atexit

comdlg32

GetOpenFileNameA

user32

CreateWindowExA
SetScrollRange
DestroyWindow
GetMenu
GetScrollRange
GetPropA
InsertMenuItemA
GetKeyState
SetDlgItemTextA
GetFocus
EnableMenuItem
SetScrollPos
CallNextHookEx
GetForegroundWindow

comctl32

ImageList_Add
ImageList_SetDragCursorImage
ImageList_Remove
ImageList_DragLeave
ImageList_SetBkColor
ImageList_AddMasked
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_Destroy
ImageList_SetOverlayImage
ImageList_SetImageCount
ImageList_GetBkColor
ImageList_GetImageInfo

ole32

CoTaskMemAlloc
CoGetClassObject
OleDraw
OleSetClipboard
OleSetMenuDescriptor
OleInitialize
CoReleaseMarshalData
CoInitializeSecurity
DoDragDrop
PropVariantClear

gdi32

CreateBrushIndirect
GetEnhMetaFileDescriptionA
Arc
PtInRegion
GetEnhMetaFileBits
GetPaletteEntries
GetTextFaceA
PtVisible
CombineRgn
ExtCreatePen
CreateCompatibleBitmap

advapi32

CryptGenRandom
CryptCreateHash
CopySid
OpenSCManagerA
ControlService
OpenServiceA
RegOpenKeyW
QueryServiceStatus
RegDeleteValueW
FreeSid
RegEnumKeyW
CryptDestroyHash
RegCreateKeyExA
RegQueryInfoKeyA
RegEnumKeyExW
SetSecurityDescriptorDacl

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0acf5b142d20c06818b93633b5b9c0dd

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

comctl32

ole32

gdi32

advapi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 23KB - Virtual size: 100KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 23KB - Virtual size: 100KB