dd8ad2d833874c31d23014b9ce126bf287d79ea931fb28f9ff815a88e99a2503

Sharing

Copy URL Twitter E-mail

General

Target

dd8ad2d833874c31d23014b9ce126bf287d79ea931fb28f9ff815a88e99a2503
Size

79KB
MD5

f4af6eb41b92805e29421c8038236873
SHA1

95ba55cc8bce30bfe87c72f23ecba2c79ffe800c
SHA256

dd8ad2d833874c31d23014b9ce126bf287d79ea931fb28f9ff815a88e99a2503
SHA512

d33a972d82c595e7dedbf0c3666213ff7899c3b877085368e78811d58ca9ffc80729cb1c1176317c7f8c5aac6f565f3d7cf07173ccc0c1fd6c38cebeb290a034
SSDEEP

1536:3Oo3Sa822EdqZVhKUDHTJ8gASz0sEACukrca3BDyhV8mKvru:+o3+22EkQUDHTJ8WDgfchA

Score

N/A

Malware Config

Signatures

Files

dd8ad2d833874c31d23014b9ce126bf287d79ea931fb28f9ff815a88e99a2503
.exe windows x86

9bb7585215775678868951beb1a111f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetSysColor
GetSubMenu
EqualRect
PostQuitMessage
GetScrollPos
SetWindowPos
GetMessageA
UnhookWindowsHookEx
EnumWindows
EnableMenuItem
SetWindowTextA
FrameRect
GetSysColorBrush

kernel32

GetTimeZoneInformation
GetACP
GetCurrentProcessId
InterlockedExchange
GetStartupInfoA
VirtualAllocEx
GetFileAttributesA
GetTempPathA
GetThreadLocale
SetUnhandledExceptionFilter
GetOEMCP
GetSystemTime
FileTimeToSystemTime
ExitProcess
RtlUnwind

gdi32

CopyEnhMetaFileA
GetMapMode
CreateCompatibleBitmap
FillRgn
ExcludeClipRect
CreateICW
DPtoLP
SelectClipPath
SetViewportExtEx

ole32

CoInitialize
OleRun
StgOpenStorage
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoRevokeClassObject
DoDragDrop
CoInitializeSecurity

advapi32

FreeSid
CryptHashData
GetUserNameA
RegQueryValueExW
QueryServiceStatus
GetSecurityDescriptorDacl
RegCreateKeyExW
RegCreateKeyA
CheckTokenMembership
AdjustTokenPrivileges

msvcrt

__initenv
strcspn
_flsbuf
_CIpow
signal
strncpy
fprintf
iswspace
raise
fflush
strlen
puts
_fdopen
__getmainargs
_mbscmp
__setusermatherr
_strdup
_lock

comctl32

InitCommonControls
ImageList_SetIconSize
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_DrawEx
ImageList_LoadImageA
ImageList_DragEnter
ImageList_LoadImageW
ImageList_GetBkColor
ImageList_Write
ImageList_Destroy
ImageList_GetIconSize
CreatePropertySheetPageA

shell32

ShellExecuteEx
ExtractIconW
ExtractIconExW
ShellExecuteW
SHGetPathFromIDList
DragQueryFileA
DragAcceptFiles
DragQueryFileW
CommandLineToArgvW
SHBrowseForFolderA
DoEnvironmentSubstW

oleaut32

SafeArrayPutElement
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayCreate
SafeArrayPtrOfIndex
VariantCopy
SafeArrayRedim
SysReAllocStringLen

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9bb7585215775678868951beb1a111f2

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 31KB - Virtual size: 31KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 6KB - Virtual size: 34KB

.text
Size: 31KB - Virtual size: 31KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 6KB - Virtual size: 34KB