bf3b36f879568f4fae18b1a0f5ea1c7a5bc5a08e695634076e1290f821bb382f

Sharing

Copy URL Twitter E-mail

General

Target

bf3b36f879568f4fae18b1a0f5ea1c7a5bc5a08e695634076e1290f821bb382f
Size

82KB
MD5

fee52cf07c37376cc886ba69fbcc0d85
SHA1

52ec9fb3794d24073b8b011cd3ee6576d3eb8715
SHA256

bf3b36f879568f4fae18b1a0f5ea1c7a5bc5a08e695634076e1290f821bb382f
SHA512

a60285d07a3d01b5552d96874877c9ef318543da35ef26e7390d0185450663bdd3e964ce54ef306b9318a80fee52437b4879e79d05d7a1d18f5187675fe7bf68
SSDEEP

1536:dVj5QQxOHrww1ZHIS9nJdMslB+jXm8sbtCZ+WuWARlFJu1jMb:dHQhL11ZoMJdMslB+jXmpJCAWQlFJqm

Score

N/A

Malware Config

Signatures

Files

bf3b36f879568f4fae18b1a0f5ea1c7a5bc5a08e695634076e1290f821bb382f
.exe windows x86

8b9d6a89da30038926e99af53b8627a9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetMessageA
GetSysColor
SetWindowPos
GetSubMenu
EnableMenuItem
PostQuitMessage
SetWindowTextA
EqualRect
FrameRect
GetSysColorBrush
UnhookWindowsHookEx
GetScrollPos
EnumWindows

kernel32

VirtualAllocEx
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetStartupInfoA
ExitProcess
GetTickCount
FileTimeToSystemTime
GetFileAttributesA
GetACP
GetCurrentProcessId
GetOEMCP
GetThreadLocale
GetTempPathA
RtlUnwind
QueryPerformanceCounter
InterlockedExchange

gdi32

CopyEnhMetaFileA
GetMapMode
FillRgn
CreateCompatibleBitmap
CreateICW
DPtoLP
SetViewportExtEx
SelectClipPath
ExcludeClipRect

ole32

CoInitializeSecurity
CoRevokeClassObject
CoTaskMemRealloc
CoInitialize
DoDragDrop
OleRun
StringFromGUID2
StgOpenStorage
CoCreateInstance

advapi32

CryptHashData
GetSecurityDescriptorDacl
CheckTokenMembership
GetUserNameA
RegQueryValueExW
RegCreateKeyA
AdjustTokenPrivileges
RegCreateKeyExW
FreeSid
QueryServiceStatus

msvcrt

puts
_flsbuf
fprintf
__getmainargs
strlen
_fdopen
strncpy
raise
__initenv
_CIpow
strcspn
_mbscmp
signal
__setusermatherr
_lock
iswspace
fflush
_strdup

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_LoadImageW
CreatePropertySheetPageA
ImageList_Write
ImageList_SetIconSize
InitCommonControls
ImageList_DragEnter
ImageList_GetBkColor
ImageList_GetIconSize
ImageList_DrawEx
ImageList_LoadImageA
ImageList_GetIcon

shell32

ShellExecuteW
SHGetPathFromIDList
ExtractIconExW
DoEnvironmentSubstW
DragQueryFileW
ShellExecuteEx
CommandLineToArgvW
DragAcceptFiles
DragQueryFileA
SHBrowseForFolderA
ExtractIconW

oleaut32

SysReAllocStringLen
SafeArrayPtrOfIndex
SafeArrayRedim
SafeArrayPutElement
VariantCopy
SafeArrayUnaccessData
SafeArrayGetUBound
SafeArrayCreate

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8b9d6a89da30038926e99af53b8627a9

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 33KB - Virtual size: 33KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 6KB - Virtual size: 34KB

.text
Size: 33KB - Virtual size: 33KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 6KB - Virtual size: 34KB