c7f1da2749a49b7ab46317e73aa6196369d25be6df7909bd52abbb23316a4743

Sharing

Copy URL Twitter E-mail

General

Target

c7f1da2749a49b7ab46317e73aa6196369d25be6df7909bd52abbb23316a4743
Size

26KB
MD5

6754bfc3e64632241f9ee3708e06df69
SHA1

017159911e8d9177a0257502f5ea1b1b03338c28
SHA256

c7f1da2749a49b7ab46317e73aa6196369d25be6df7909bd52abbb23316a4743
SHA512

1963dc32ffba7d3358ba4a82b4ce0691b028621c9bfa790d3be963860648fc073f9ec802e78d60d3ea40ca710bb55f51b6032d4979233d7693e4a6fceb090d1e
SSDEEP

384:s0en2JQIfUc2wOGxT/nkqx0j79/7FPftUtc+EJjN71wUND4YPhhSriC9Al:gaMwdx01IoJcUNDfhh+L

Score

N/A

Malware Config

Signatures

Files

c7f1da2749a49b7ab46317e73aa6196369d25be6df7909bd52abbb23316a4743
.exe windows x86

993e4ddaeac6e612b65cce255540c311

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

PathCombineW
StrRChrW
PathRemoveFileSpecW
PathAddBackslashW
PathBuildRootW
StrStrIW
PathAppendW
StrChrW
PathFileExistsW

setupapi

SetupOpenFileQueue
SetupCloseInfFile
SetupOpenInfFileW
SetupQueueCopyW
SetupDefaultQueueCallbackW
SetupFindFirstLineW
SetupOpenAppendInfFileW
SetupGetStringFieldW
SetupSetDirectoryIdW
SetupFindNextLine
SetupTermDefaultQueueCallback
SetupCommitFileQueueW
SetupCloseFileQueue
SetupInstallFromInfSectionW
SetupGetLineTextW
SetupInitDefaultQueueCallbackEx

ole32

OleInitialize
OleUninitialize
CoTaskMemFree

msvcrt

_wtoi
memmove
_amsg_exit
malloc
memset
_wcsicmp
free
_vsnprintf
_vsnwprintf
bsearch
_adjust_fdiv
_XcptFilter
memcpy
_wtol
_setjmp3
_initterm
wcsncmp
_ultow
_wcsnicmp
longjmp

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

usp10

ScriptGetFontProperties

gdi32

GetDeviceCaps
GetStockObject
DeleteObject
CreateFontIndirectW
GetObjectW

kernel32

LoadResource
WideCharToMultiByte
GetCurrentProcess
GetDriveTypeW
FreeConsole
GetSystemDirectoryW
GetDiskFreeSpaceW
lstrlenW
VirtualAlloc
GetLastError
GetVolumeInformationW
MoveFileW
UnhandledExceptionFilter
RemoveDirectoryW
MulDiv
CreateFileMappingW
FormatMessageW
WritePrivateProfileSectionW
GetFileSize
GetTickCount
GetUserDefaultUILanguage
FindNextFileW
GetLocaleInfoW
GetFileAttributesW
TerminateProcess
QueryPerformanceCounter
LoadLibraryExW
LocalReAlloc
UnmapViewOfFile
lstrlenA
InterlockedExchange
DisableThreadLibraryCalls
GetFileTime
FindClose
GetProcessHeap
GetFullPathNameW
SizeofResource
CompareStringW
InterlockedCompareExchange
GetTempPathW
SetFileAttributesW
FindResourceW
SetFileTime
GetTempFileNameW
FindResourceExW
CreateDirectoryW
SetUnhandledExceptionFilter
SetLastError
GetSystemInfo
HeapFree
GetCurrentThreadId
RtlUnwind
CopyFileW
ReadFile
MoveFileExW
GetLocalTime
lstrcmpiA
GetCurrentProcessId
CloseHandle
GetWindowsDirectoryW
ExpandEnvironmentStringsW
LocalAlloc
GetSystemTimeAsFileTime
MultiByteToWideChar
GetPrivateProfileSectionW
MapViewOfFile
CreateFileW
GetSystemDefaultUILanguage
MapViewOfFileEx
LoadLibraryW
GetProfileStringW
SearchPathW
GetPrivateProfileStringW
FreeLibrary
GetEnvironmentVariableW
HeapAlloc
lstrcmpiW
lstrcmpW
LockResource
DeleteFileW
GetProcAddress
LocalFree
Sleep
EnumResourceLanguagesW
WritePrivateProfileStringW
WriteFile
GetModuleFileNameW
GetPrivateProfileIntW
GetShortPathNameW
CreateProcessW
GetVersionExW

crypt32

CryptFormatObject

user32

CharNextW
SetWindowTextW
GetDlgItemTextW
IsWindow
SetWindowPos
GetDesktopWindow
ReleaseDC
MsgWaitForMultipleObjects
CharPrevW
GetWindowRect
ExitWindowsEx
UpdateWindow
EnableWindow
CreateDialogParamW
DispatchMessageW
EndDialog
MessageBoxW
GetSystemMetrics
GetDC
SendDlgItemMessageW
DestroyWindow
GetDlgItem
CharNextA
MessageBeep
ShowWindow
SendMessageW
SetDlgItemTextW
LoadStringW
PeekMessageW
OemToCharA
CharUpperW
DialogBoxParamW

Sections

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

993e4ddaeac6e612b65cce255540c311

Headers

File Characteristics

Imports

shlwapi

setupapi

ole32

msvcrt

version

usp10

gdi32

kernel32

crypt32

user32

Sections

.rsrc Size: 13KB - Virtual size: 13KB

.text Size: 512B - Virtual size: 436B

.idata Size: 5KB - Virtual size: 5KB

.data Size: - Virtual size: 96KB

.rdata Size: 5KB - Virtual size: 5KB

.rsrc
Size: 13KB - Virtual size: 13KB

.text
Size: 512B - Virtual size: 436B

.idata
Size: 5KB - Virtual size: 5KB

.data
Size: - Virtual size: 96KB

.rdata
Size: 5KB - Virtual size: 5KB