941a69547738ba80be7a32c2d4d73343e6565f360e8d73c5abe65c193cf8e05e

Sharing

Copy URL Twitter E-mail

General

Target

941a69547738ba80be7a32c2d4d73343e6565f360e8d73c5abe65c193cf8e05e
Size

31KB
MD5

080f99902773cfcbfb7ae5e7ee6bb1c2
SHA1

8eb31949ead590e680cc679b66f2d7ba7cf64767
SHA256

941a69547738ba80be7a32c2d4d73343e6565f360e8d73c5abe65c193cf8e05e
SHA512

33f14706433208451c7b7e60245e5ec4437d17ba0491a045ee79f18de1d5ae3f68a2449ae7b4a788675966de2a613000504ebc1c3853a64f1898550337dbce7d
SSDEEP

768:6VAH8qcNarpKFvxTC7CaSDIDQ4OhMM9NYNH:ccbcNa1QJTraSDAQfJ9Nk

Score

N/A

Malware Config

Signatures

Files

941a69547738ba80be7a32c2d4d73343e6565f360e8d73c5abe65c193cf8e05e
.exe windows x86

3cdaf58be6c71d63318f0b367a3bcc18

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexW
GetUserDefaultLangID
GetCurrentThreadId
MultiByteToWideChar
GetModuleFileNameW
SetUnhandledExceptionFilter
SetCommConfig
GetFileAttributesW
LoadResource
DuplicateHandle
GetSystemInfo
ReleaseMutex
FindNextFileW
GetCurrentProcess
GetTickCount
SetEndOfFile
GetUserDefaultUILanguage
IsDebuggerPresent
LoadLibraryExW
CreateProcessW
HeapAlloc
ExpandEnvironmentStringsW
CreateFileMappingW
MapViewOfFile
WideCharToMultiByte
CloseHandle
OutputDebugStringA
GetLocaleInfoW
HeapDestroy
TerminateProcess
UnmapViewOfFile
InterlockedCompareExchange
GetConsoleMode
GetCurrentThreadId
GetCurrentProcessId
GetFileTime
InterlockedExchange
FindFirstFileW
CreateEventW
GetFileType
GetConsoleOutputCP
SetErrorMode
VirtualFree
QueryPerformanceCounter
VirtualQuery
HeapCreate
SetLastError
HeapFree
GetSystemTimeAsFileTime
Sleep
FindClose
CreateFileW
GetModuleHandleW
FindResourceW
SetEvent
WaitForSingleObject
SetFileTime
UnhandledExceptionFilter

comdlg32

GetOpenFileNameA
CommDlgExtendedError

ole32

CreateItemMoniker
CLSIDFromString
OleLockRunning
CoInitialize
OleUninitialize
CoUninitialize
CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc
GetRunningObjectTable
CLSIDFromProgID
CoGetClassObject
CoTaskMemRealloc
CreateStreamOnHGlobal
CoFreeUnusedLibraries
CoCreateInstance
OleInitialize

advapi32

RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCreateKeyA
RegEnumKeyExA
RegQueryValueExA
RegCloseKey
RegDeleteKeyA
RegQueryInfoKeyA

shell32

DragQueryFileA
ShellExecuteW
DragQueryFileW
ShellExecuteA
DragAcceptFiles
SHAppBarMessage

user32

SetTimer
LoadCursorA
GetMessageA
MessageBoxA
wsprintfA

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qcjvuw
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 13KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3cdaf58be6c71d63318f0b367a3bcc18

Headers

File Characteristics

Imports

kernel32

comdlg32

ole32

advapi32

shell32

user32

Sections

.text Size: 10KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 10KB

.qcjvuw Size: 3KB - Virtual size: 3KB

.edata Size: 13KB - Virtual size: 51KB

.text
Size: 10KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 10KB

.qcjvuw
Size: 3KB - Virtual size: 3KB

.edata
Size: 13KB - Virtual size: 51KB