b27cc1364411f5886acfd8a9df714a10d14cec1d0bae78211a54eb4e4c8d47f1

Sharing

Copy URL Twitter E-mail

General

Target

b27cc1364411f5886acfd8a9df714a10d14cec1d0bae78211a54eb4e4c8d47f1
Size

84KB
MD5

5e5e1e1c2f72c0cba4966823d11ac8cf
SHA1

322f65d3d2e2ac43ce8a8f0854a640f65eb23b03
SHA256

b27cc1364411f5886acfd8a9df714a10d14cec1d0bae78211a54eb4e4c8d47f1
SHA512

9acde38a1498b714a91bd25396d62d1fc6c80fcfd6005bddd83eb2d97b4b1a9d2afd119d1bea5d18f7716d9ae449e9beaebd9ef16649fedae2e1dbd32240a7d1
SSDEEP

1536:rCQg1ziZIBHfEkQL5o1xfYnLRYjQuBjcof7jI+G5tckBHj4FYT3t+fkV:Y1ziZIZEkoWi8Qu5pf+zc8D4c4k

Score

N/A

Malware Config

Signatures

Files

b27cc1364411f5886acfd8a9df714a10d14cec1d0bae78211a54eb4e4c8d47f1
.exe windows x86

eb93eba787dc8e215d2ecd892437e387

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetSubMenu
EqualRect
SetWindowPos
SetWindowTextA
GetScrollPos
GetSysColorBrush
EnumWindows
EnableMenuItem
UnhookWindowsHookEx
PostQuitMessage
FrameRect
GetMessageA
GetSysColor

kernel32

GetTickCount
GetStartupInfoA
GetSystemTime
VirtualAllocEx
QueryPerformanceCounter
RtlUnwind
GetOEMCP
GetThreadLocale
ExitProcess
GetTimeZoneInformation
GetACP
GetFileAttributesA
InterlockedExchange
FileTimeToSystemTime
GetCurrentProcessId
GetTempPathA
SetUnhandledExceptionFilter

gdi32

CopyEnhMetaFileA
GetMapMode
CreateCompatibleBitmap
DPtoLP
SetViewportExtEx
ExcludeClipRect
CreateICW
FillRgn
SelectClipPath

ole32

CoTaskMemRealloc
CoInitializeSecurity
DoDragDrop
CoCreateInstance
CoInitialize
OleRun
StgOpenStorage
StringFromGUID2
CoRevokeClassObject

advapi32

CryptHashData
RegCreateKeyExW
GetUserNameA
RegCreateKeyA
QueryServiceStatus
AdjustTokenPrivileges
RegQueryValueExW
FreeSid
CheckTokenMembership
GetSecurityDescriptorDacl

msvcrt

_CIpow
_strdup
iswspace
__setusermatherr
_lock
strncpy
_fdopen
fflush
fprintf
signal
puts
raise
__initenv
_flsbuf
strcspn
__getmainargs
_mbscmp
strlen

comctl32

ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_Write
CreatePropertySheetPageA
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_DrawEx
ImageList_SetIconSize
InitCommonControls
ImageList_Destroy
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_DragEnter

shell32

DragQueryFileW
DragAcceptFiles
ExtractIconExW
ShellExecuteEx
CommandLineToArgvW
ExtractIconW
SHBrowseForFolderA
ShellExecuteW
DoEnvironmentSubstW
SHGetPathFromIDList
DragQueryFileA

oleaut32

SafeArrayCreate
SysReAllocStringLen
SafeArrayRedim
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayGetUBound
VariantCopy
SafeArrayPtrOfIndex

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

eb93eba787dc8e215d2ecd892437e387

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 36KB - Virtual size: 35KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 6KB - Virtual size: 76KB

.text
Size: 36KB - Virtual size: 35KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 6KB - Virtual size: 76KB