9c047fa2e17379a1368bd524533021febffccfaabea1ead4fd1eed98b1cbc4f0

Sharing

Copy URL Twitter E-mail

General

Target

9c047fa2e17379a1368bd524533021febffccfaabea1ead4fd1eed98b1cbc4f0
Size

148KB
MD5

4a14f39532ba5cc6ed4d078e1106a7a5
SHA1

249aec627b304a4ce8e3b176f47acb21c3c71910
SHA256

9c047fa2e17379a1368bd524533021febffccfaabea1ead4fd1eed98b1cbc4f0
SHA512

dbcc7ddf75df7c8be844e764c287ccc20b6405fec531ec9c13a2afee18a7352f8d91c96a736d5a8db0c8364546d866f36dda751689df2b83705292f30bd54812
SSDEEP

3072:fnVAn2g0SOV5MhPz85lt+h/4E2+b20GT2z07pM4CSF7Lfzjy2:ftZc4kb20G609M9SFnfzjV

Score

N/A

Malware Config

Signatures

Files

9c047fa2e17379a1368bd524533021febffccfaabea1ead4fd1eed98b1cbc4f0
.exe windows x86

d1b6456f7a75995a4d110aae5e92838f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

VirtualProtect
CreateFileMappingA
GetSystemInfo
SetFileTime
GetACP
WideCharToMultiByte
EnumCalendarInfoA
IsBadCodePtr
VirtualQuery
lstrlenW
GetStartupInfoA
GetEnvironmentVariableA
MoveFileA
GetModuleHandleA
WriteConsoleA
TerminateProcess
GetCurrentProcess
SetThreadLocale

user32

GetDCEx
OpenClipboard
GetSysColor
EndDialog
TranslateMessage
IsIconic
GetLastActivePopup
PeekMessageA
TrackPopupMenu
RemovePropA
SetMenu

msvcrt

log10
_acmdln
exit
fgetc
_XcptFilter
__setusermatherr
__p__fmode
__p__commode
signal
isleadbyte
wcslen
__dllonexit
fopen
_strdup
_except_handler3
_initterm
__getmainargs
_dup
__set_app_type
_adjust_fdiv
_CIpow
_wfopen

shell32

DragQueryFileW
ShellExecuteW
SHGetFolderLocation
ExtractIconExW
Shell_NotifyIconA
ShellExecuteExW
SHChangeNotify
SHGetDiskFreeSpaceExW

comctl32

ImageList_LoadImageW
ImageList_GetIconSize
PropertySheetW
ImageList_Draw
ImageList_Remove
ImageList_SetImageCount
DestroyPropertySheetPage
ImageList_Write
ImageList_EndDrag

advapi32

RegOpenKeyA
CryptCreateHash
OpenProcessToken
CloseServiceHandle
RegEnumKeyExW
GetTokenInformation
LookupPrivilegeValueA
RegCloseKey

ole32

OleInitialize
StringFromGUID2
CreateILockBytesOnHGlobal
OleSetMenuDescriptor
OleIsCurrentClipboard

oleaut32

SetErrorInfo
SafeArrayPtrOfIndex
VariantClear
GetErrorInfo
CreateErrorInfo

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d1b6456f7a75995a4d110aae5e92838f

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

shell32

comctl32

advapi32

ole32

oleaut32

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 136KB - Virtual size: 136KB

.data Size: 6KB - Virtual size: 6KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 136KB - Virtual size: 136KB

.data
Size: 6KB - Virtual size: 6KB