d329dd53450fff8fa881ed70abf4287405c75da5ef9e61d140cb9e44732e2bef

Sharing

Copy URL Twitter E-mail

General

Target

d329dd53450fff8fa881ed70abf4287405c75da5ef9e61d140cb9e44732e2bef
Size

129KB
MD5

d10c967bb1d1f0946f19d04c7bfbcb69
SHA1

df89ce36d6401a09229a509436d859047245a70e
SHA256

d329dd53450fff8fa881ed70abf4287405c75da5ef9e61d140cb9e44732e2bef
SHA512

ac7077740e1435408b896ab73022fd1e387651102e96f514309794e66dc2d500ecca4851494faf6f2af7ec3b4b0e4e660a825f79cc148dc22c8b16c05dc0b107
SSDEEP

1536:71ObA4pLNhaZcOpilLUT/YeUByiTpc2B+hDOHO1zKFDPY3zV/Qz83V9SRKt:7oA4pLN4yOYLUT/Yey+hj18DgpFbSct

Score

N/A

Malware Config

Signatures

Files

d329dd53450fff8fa881ed70abf4287405c75da5ef9e61d140cb9e44732e2bef
.exe windows x86

bbfc40caf3b1514fd5dfe979af31f709

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

tan
wcstol
_acmdln
cos
time
pow
srand
rand

comctl32

ImageList_Create
ImageList_Destroy
ImageList_Add
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Read

shlwapi

PathFileExistsA
SHDeleteKeyA
PathIsContentTypeA
SHQueryValueExA
SHSetValueA
SHQueryInfoKeyA
SHDeleteValueA
SHEnumValueA
SHStrDupA
PathGetCharTypeA

user32

OpenClipboard
RemoveMenu
GetScrollInfo
RegisterClassA
OffsetRect
IsZoomed
CharNextA
WaitMessage
GetKeyboardLayoutList
CharLowerA
DefWindowProcA
FindWindowA
SetCursor
DispatchMessageA
PostMessageA
UnregisterClassA
RedrawWindow
DefFrameProcA
TranslateMessage
CreateMenu
ScreenToClient
GetDesktopWindow
GetClientRect
GetMenuItemID
ShowOwnedPopups
GetKeyboardState
ClientToScreen
MsgWaitForMultipleObjects

gdi32

CreateCompatibleBitmap
SetBkColor
CreateDIBitmap
GetDCOrgEx
SelectObject

oleaut32

OleLoadPicture

shell32

SHGetDiskFreeSpaceA

comdlg32

GetFileTitleA
FindTextA
GetOpenFileNameA

kernel32

GetModuleHandleA
GetOEMCP
WideCharToMultiByte
GetProcAddress
GetCommandLineA
MoveFileExA
GetVersion
ResetEvent
LoadLibraryA
GetDiskFreeSpaceA
GlobalDeleteAtom
GetSystemDefaultLangID
VirtualAlloc
RaiseException
ExitThread
GetCurrentProcessId
ExitProcess
LoadLibraryExA

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbfc40caf3b1514fd5dfe979af31f709

Headers

File Characteristics

Imports

msvcrt

comctl32

shlwapi

user32

gdi32

oleaut32

shell32

comdlg32

kernel32

Sections

.text Size: 33KB - Virtual size: 33KB

.data Size: 70KB - Virtual size: 70KB

.rdata Size: 12KB - Virtual size: 11KB

.adata Size: 2KB - Virtual size: 1KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 33KB - Virtual size: 33KB

.data
Size: 70KB - Virtual size: 70KB

.rdata
Size: 12KB - Virtual size: 11KB

.adata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 10KB - Virtual size: 9KB