0cc4e8ec36145aec0d412acdd6cdbca87686e2b12177768bcb374355efcb303b

Sharing

Copy URL Twitter E-mail

General

Target

0cc4e8ec36145aec0d412acdd6cdbca87686e2b12177768bcb374355efcb303b
Size

97KB
MD5

ee1517fd8611cc3f0dce5c6cf6a9c1ef
SHA1

90a2aba0fc436aa072bc8409424f5068ec5c9462
SHA256

0cc4e8ec36145aec0d412acdd6cdbca87686e2b12177768bcb374355efcb303b
SHA512

f0a70406ae537b23886453f708752381ab43bc14d0663b6b35e2003c18bbfded5ad3e27a311e8d2195e719d5b1c608b7d0b81567474ee3664db6377b39c9100a
SSDEEP

1536:gylrl+arFiobCrN6S6Ll7jMtP45Vb30K34/j7g2fvCx:HQkHb7jMP+YKovg2HCx

Score

N/A

Malware Config

Signatures

Files

0cc4e8ec36145aec0d412acdd6cdbca87686e2b12177768bcb374355efcb303b
.exe windows x86

fc4b9a5674e246377051c3801b0c0007

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
__p__commode
__set_app_type
_acmdln
__getmainargs
__setusermatherr
strlen
strchr
fputs
free
calloc
strrchr
fclose
_adjust_fdiv
fread
_XcptFilter
memmove
__p__fmode
_exit
_initterm
fwrite

kernel32

LoadLibraryExW
GetStartupInfoA
GetCPInfo
GetSystemTime
IsBadReadPtr
GetUserDefaultLangID
lstrcpyA
SetFileAttributesA
SetStdHandle
GetModuleHandleA
GetModuleFileNameA
GetModuleHandleW
IsBadCodePtr
GetSystemInfo
SetHandleCount
WriteFile
WaitForMultipleObjects
EnumCalendarInfoA
GlobalLock
ReadFile
FreeLibrary
VirtualAlloc
GetProcAddress
GetTimeZoneInformation
WritePrivateProfileStringA

ole32

CoCreateGuid
IsEqualGUID
CreateStreamOnHGlobal
CoTaskMemRealloc
CoReleaseMarshalData
StgOpenStorage
CoRegisterClassObject
OleSetMenuDescriptor
ReleaseStgMedium

comctl32

ImageList_SetDragCursorImage
ImageList_Write
ImageList_GetIconSize
ImageList_LoadImageW
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetBkColor
ImageList_Remove
InitCommonControls

user32

SetMenu
DrawIcon
InsertMenuItemA
TranslateMessage
GetSysColor
CloseClipboard
GetWindowThreadProcessId
IntersectRect
DrawEdge

advapi32

OpenThreadToken
CheckTokenMembership
CryptAcquireContextA
CryptGenRandom
SetSecurityDescriptorGroup
ControlService
RegDeleteKeyA
RegCreateKeyA
GetUserNameA
RegSetValueExW
FreeSid
RegDeleteKeyW
CryptReleaseContext
CryptHashData
RegEnumKeyA

oleaut32

SetErrorInfo
SysFreeString
VariantCopy
SafeArrayCreate
SafeArrayPtrOfIndex
SysReAllocStringLen
SafeArrayGetElement

gdi32

SetBrushOrgEx
AbortDoc
Rectangle
SelectClipRgn
CreateICW
FillPath
OffsetViewportOrgEx
RectVisible

Sections

.text
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc4b9a5674e246377051c3801b0c0007

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

comctl32

user32

advapi32

oleaut32

gdi32

Sections

.text Size: 55KB - Virtual size: 55KB

.data Size: 25KB - Virtual size: 24KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 55KB - Virtual size: 55KB

.data
Size: 25KB - Virtual size: 24KB

.rsrc
Size: 16KB - Virtual size: 15KB