3474576b861b0786d5a6a23e3c67c4a7c2293ea1405c627ce964e3b49f53904a

Sharing

Copy URL Twitter E-mail

General

Target

3474576b861b0786d5a6a23e3c67c4a7c2293ea1405c627ce964e3b49f53904a
Size

153KB
MD5

79d34b0baec2265b0133f73ef9fbe8c4
SHA1

d33cdba9c6b3264de2599e56b9b53118a4b96491
SHA256

3474576b861b0786d5a6a23e3c67c4a7c2293ea1405c627ce964e3b49f53904a
SHA512

37f6d3864119b1027e68a3d386cb19bbfd7e3d3c6e009b1449f8f2ca6806f08ad864c75ddf241dabc6fcf747ac128c16b62c4047f00b8cef39c7fc9620118056
SSDEEP

3072:YUd+QXTvt+QgUOB3U45niSPgB+PMALQCjIef:tLgt3U45iD/Af

Score

N/A

Malware Config

Signatures

Files

3474576b861b0786d5a6a23e3c67c4a7c2293ea1405c627ce964e3b49f53904a
.exe windows x86

ee41f348613939297b4a58b602eca31f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LocalAlloc
GetEnvironmentStrings
GetStartupInfoA
GetSystemDefaultLCID
CreateFileMappingA
SetUnhandledExceptionFilter
GetModuleHandleA
VirtualProtect
FileTimeToLocalFileTime

user32

LoadBitmapA
GetSubMenu
EndPaint
GetDesktopWindow
EnumWindows
LoadCursorA

msvcrt

log10
ftell
__set_app_type
_amsg_exit
_XcptFilter
__p__commode
_adjust_fdiv
_except_handler3
__setusermatherr
_initterm
_CIpow
exit
_isctype
floor
fseek
__getmainargs
_wcsnicmp
_iob
_snwprintf
__pioinfo
wcscat
__p__fmode
_acmdln

comctl32

ImageList_DrawEx
ImageList_LoadImageA
ImageList_GetImageInfo
ImageList_EndDrag
ImageList_Add
ImageList_DragShowNolock
DestroyPropertySheetPage
ImageList_DragLeave
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_SetBkColor

oleaut32

VariantCopyInd
LoadTypeLib
GetErrorInfo
VariantClear
SafeArrayGetElement
SafeArrayCreate
SysAllocStringLen
SafeArrayUnaccessData
SetErrorInfo
SafeArrayPtrOfIndex

version

GetFileVersionInfoSizeA
VerFindFileW
VerQueryValueA
VerLanguageNameA
GetFileVersionInfoA

ole32

CoInitializeEx
CoTaskMemFree
PropVariantClear
RevokeDragDrop
CLSIDFromString
OleDraw
OleUninitialize
ProgIDFromCLSID
CoRegisterMessageFilter

shell32

ShellExecuteA
SHFileOperationW
ShellExecuteExA
ExtractIconW
SHAddToRecentDocs
SHBrowseForFolderA
SHGetDesktopFolder

advapi32

SetSecurityDescriptorGroup
CryptReleaseContext
RegFlushKey
GetTokenInformation
AdjustTokenPrivileges
OpenServiceW
OpenProcessToken
GetLengthSid
SetSecurityDescriptorDacl
OpenSCManagerW

Sections

.text
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ee41f348613939297b4a58b602eca31f

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

comctl32

oleaut32

version

ole32

shell32

advapi32

Sections

.text Size: 81KB - Virtual size: 81KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 55KB - Virtual size: 55KB

.text
Size: 81KB - Virtual size: 81KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 55KB - Virtual size: 55KB