b8ad99b6600a4e498b84566364a40d3ee7300e39edceca9d2eb10168db8acf94

Sharing

Copy URL

Twitter E-mail

General

Target

b8ad99b6600a4e498b84566364a40d3ee7300e39edceca9d2eb10168db8acf94
Size

101KB
MD5

1d2cff5d4a99831a24731e3f0b9d08ee
SHA1

602398f5cd4f13d30a98bb38f332261df609cfd2
SHA256

b8ad99b6600a4e498b84566364a40d3ee7300e39edceca9d2eb10168db8acf94
SHA512

f89377f47e3ce9d53f8e3093a978dba48caa6e3a81f50f9249ad49be6e9bc2e852ddd5e65c33d49448e7e762e55f159d7a702ac91a5fd7c03f6d0782f0c2f9d1
SSDEEP

1536:AjaHQ+sHRqjFqFJoCjHXiG4ndgZTekTJmJZIQd3SwVt05WcnU6Xr/jFKE4:7ZIlyAHJsdQT9EJZ/d3btPX6Xr/hKE4

Score

N/A

Malware Config

Signatures

Files

b8ad99b6600a4e498b84566364a40d3ee7300e39edceca9d2eb10168db8acf94
.exe windows x86

b566af35b0c20a85fac0ae7bcee2540d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FreeEnvironmentStringsW
GlobalReAlloc
GetFileTime
LCMapStringA
GetEnvironmentStringsW
GetLocalTime
GetFileAttributesA
FileTimeToLocalFileTime
VirtualProtect
GetLastError
GetModuleHandleA
SetFileAttributesA
GetStartupInfoA
UnhandledExceptionFilter

user32

EndPaint
GetSysColor
IsWindowVisible
DestroyIcon
PostMessageA
FindWindowA

msvcrt

__set_app_type
__p__commode
_adjust_fdiv
_XcptFilter
towupper
memset
_fullpath
_initterm
__getmainargs
_acmdln
_filelengthi64
__setusermatherr
__p__fmode
sqrt
swscanf
signal
exit
sprintf
_except_handler3
remove

shell32

ShellExecuteExA
Shell_NotifyIconW
DragQueryFileW
ShellExecuteExW
SHGetFolderLocation

comctl32

ImageList_SetDragCursorImage
ImageList_DragShowNolock
DestroyPropertySheetPage
InitCommonControls
ImageList_Destroy

ole32

ReleaseStgMedium
RevokeDragDrop
CoRegisterClassObject
StringFromCLSID
CoRevokeClassObject
OleDraw
CoGetClassObject

advapi32

GetTokenInformation
CheckTokenMembership
InitializeSecurityDescriptor
CryptGenRandom
SetSecurityDescriptorOwner
RegOpenKeyExW
GetSecurityDescriptorDacl
RevertToSelf
RegSetValueExA
LookupPrivilegeValueA
IsValidSid
RegOpenKeyExA
RegFlushKey

oleaut32

SysStringLen
VariantCopy
GetActiveObject
SysAllocStringByteLen
SysFreeString
SysReAllocStringLen
SafeArrayRedim

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b566af35b0c20a85fac0ae7bcee2540d

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

comctl32

ole32

advapi32

oleaut32

Sections

.text Size: 71KB - Virtual size: 70KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 25KB - Virtual size: 25KB

.text
Size: 71KB - Virtual size: 70KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 25KB - Virtual size: 25KB