d0563386dde131b6e3ac421e617831c5a78af992963fa6134e04eed6731e2047

Sharing

Copy URL Twitter E-mail

General

Target

d0563386dde131b6e3ac421e617831c5a78af992963fa6134e04eed6731e2047
Size

148KB
MD5

687549620e5e11aaf0b9cb54bf80f11f
SHA1

649c7b55644e9aa9a2f9e900f899754638cfdd79
SHA256

d0563386dde131b6e3ac421e617831c5a78af992963fa6134e04eed6731e2047
SHA512

11188d16c4380f01a6a676db7040ed0a7e1fa15f43eac5664c02527b43d805109e72587dfe4cfd4be7e481ae9abb7cf92600ed9f0083f82ffef256b596a37a46
SSDEEP

3072:rRLCNSpnBNpy1GPhsse5CvluI+3KjCzJEu54D3+aYte9HkDt:rRuYKsDvluIsfz9C3+WO

Score

N/A

Malware Config

Signatures

Files

d0563386dde131b6e3ac421e617831c5a78af992963fa6134e04eed6731e2047
.exe windows x86

fa5e38ef1b94e4f3b837b767c1b8e89e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

QueryPerformanceCounter
DeviceIoControl
GetDiskFreeSpaceA
GlobalAlloc
VirtualProtect
WideCharToMultiByte
LocalAlloc
GetModuleHandleA
IsDBCSLeadByte
MoveFileA
GetStartupInfoA

user32

GetClientRect
IsWindow
ReleaseCapture
SystemParametersInfoA
GetSysColor
SendDlgItemMessageA

msvcrt

log10
_except_handler3
longjmp
__CxxFrameHandler
__p__commode
srand
__getmainargs
_initterm
exit
__setusermatherr
__set_app_type
_adjust_fdiv
_errno
_acmdln
wcscspn
_XcptFilter
__p__environ
__p__fmode

ole32

IsEqualGUID
OleUninitialize
ReleaseStgMedium
CoCreateGuid
OleSetMenuDescriptor
CoInitialize

oleaut32

VariantInit
VariantClear
GetErrorInfo
SysAllocStringByteLen
SysAllocStringLen
SysStringByteLen
SysStringLen
GetActiveObject
SafeArrayRedim
SafeArrayCreate
SafeArrayPtrOfIndex
SetErrorInfo

shell32

SHGetPathFromIDList
Shell_NotifyIconA
SHBrowseForFolderA
DragQueryFileA
DoEnvironmentSubstW
SHGetMalloc
SHGetSettings
DragFinish
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetDesktopFolder
Shell_NotifyIconW

comctl32

ImageList_GetIconSize
ImageList_LoadImageW
CreateStatusWindowA
ImageList_LoadImageA
ImageList_SetDragCursorImage
ImageList_SetOverlayImage
PropertySheetA
InitializeFlatSB
ImageList_Read
InitCommonControlsEx
ImageList_GetIcon

advapi32

OpenThreadToken
InitializeSecurityDescriptor
OpenSCManagerA
CloseServiceHandle
DeleteService
InitiateSystemShutdownA

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fa5e38ef1b94e4f3b837b767c1b8e89e

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

ole32

oleaut32

shell32

comctl32

advapi32

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 136KB - Virtual size: 135KB

.data Size: 6KB - Virtual size: 6KB

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 136KB - Virtual size: 135KB

.data
Size: 6KB - Virtual size: 6KB