cf043772dfd8a37e589e95090766338f85f70ec84002bea7c69e592a47da6959

Sharing

Copy URL Twitter E-mail

General

Target

cf043772dfd8a37e589e95090766338f85f70ec84002bea7c69e592a47da6959
Size

3.3MB
MD5

46ec459ec2033fe31e1e3b82ad55e752
SHA1

70dc0e00b430306d6da0d362bddcf5e3a9364dba
SHA256

cf043772dfd8a37e589e95090766338f85f70ec84002bea7c69e592a47da6959
SHA512

8ebde3756f80362c269f861b8a39da2bcd1e55dec0045868dce0400bd2fa5d802c450ca4020286060c7530a2ec14001358b826fd9dbdd40d44d186ba5d54efb2
SSDEEP

98304:NMJCjS4Jh4E7LuxThluYTRGRJQ/5gDrdz+WGeHI:NMcjSkOhlLTR5gDrdKLeo

Score

N/A

Malware Config

Signatures

Files

cf043772dfd8a37e589e95090766338f85f70ec84002bea7c69e592a47da6959
.exe windows x86

15b02d7dfebf1297fabf816319ec1e76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
WriteFile
SetFilePointer
Sleep
CreateFileA
GetTempFileNameA
GetTempPathA
GetCommandLineA
GetFileAttributesA
GetModuleHandleA
SetFileAttributesA
ExitProcess
CopyFileA
GetFileTime
GetSystemDirectoryA
GetWindowsDirectoryA
GetPrivateProfileStringA
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
WritePrivateProfileStringA
FindFirstFileA
FindNextFileA
FindClose
RemoveDirectoryA
CompareFileTime
GetDiskFreeSpaceA
GlobalFree
DeleteFileA
GlobalAlloc
CloseHandle
SetFileTime
CreateThread
CreateProcessA
CreateDirectoryA
GetModuleFileNameA
MultiByteToWideChar

user32

GetAsyncKeyState
GetDlgItemTextA
LoadBitmapA
SendDlgItemMessageA
SetFocus
LoadIconA
SetClassLongA
DestroyWindow
CreateDialogParamA
SetWindowTextA
EndDialog
GetParent
IsDlgButtonChecked
ScreenToClient
SetWindowPos
IsWindowEnabled
GetDesktopWindow
SetForegroundWindow
wsprintfA
MessageBoxA
InvalidateRect
UpdateWindow
PeekMessageA
DispatchMessageA
FindWindowA
SendMessageA
GetDlgItem
SetDlgItemTextA
GetWindowRect
ShowWindow
DialogBoxParamA
EnableWindow

gdi32

CreateCompatibleDC
GetStockObject
SetBkColor
GetTextMetricsA
DeleteObject
GetNearestColor
BitBlt
SetTextColor
TextOutA
SelectObject

advapi32

RegOpenKeyA
RegSetValueExA
RegCreateKeyA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
SHFileOperationA
SHGetMalloc

ole32

OleInitialize
CoCreateInstance
CoInitialize
OleUninitialize

Sections

.text
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.prdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

15b02d7dfebf1297fabf816319ec1e76

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 24KB - Virtual size: 24KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 9KB - Virtual size: 16KB

.rsrc Size: 5KB - Virtual size: 4KB

.prdata Size: 60KB - Virtual size: 60KB

.text
Size: 24KB - Virtual size: 24KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 9KB - Virtual size: 16KB

.rsrc
Size: 5KB - Virtual size: 4KB

.prdata
Size: 60KB - Virtual size: 60KB