b248c6276fed1409224bea61405ac4c2a79e3db840907066834cfd065d8b099d

General

Target

b248c6276fed1409224bea61405ac4c2a79e3db840907066834cfd065d8b099d
Size

177KB
MD5

6aef7dd749db2933c163b701f4f7b672
SHA1

198898798714fc85918d17eaae399ff93b0de326
SHA256

b248c6276fed1409224bea61405ac4c2a79e3db840907066834cfd065d8b099d
SHA512

209e22773079ed94fd8b686c30793abe7519b5db1642e4b650e3c8562ad246075e0d6d093f2010a1cd218362f26660f1936d4ce6479ab077e3309b93a799caa2
SSDEEP

3072:5sutPhMalMxO4Rxxa+pFqfg6B1A1FLTCJjXNPNJzfcI+9RWTYMdxZMkaC:++exO4DAzPA1FLydH+9oTbhq

Score

N/A

Malware Config

Signatures

Files

b248c6276fed1409224bea61405ac4c2a79e3db840907066834cfd065d8b099d
.exe windows x86

ea6e5ee38cd02626f818a4ff15714f24

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation
ShellExecuteA
SHFileOperationA
SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA

ole32

OleInitialize
CoCreateInstance
OleUninitialize
CoTaskMemFree

kernel32

GetPrivateProfileStringA
DeleteFileA
MultiByteToWideChar
FlushInstructionCache
GetExitCodeProcess
SetFilePointer
LoadLibraryExA
GlobalAlloc
WaitForSingleObject
WritePrivateProfileStringA
EnumResourceNamesW
FindFirstFileA
FindNextFileA
WriteFile
MulDiv
FreeLibrary
SetupComm
GetModuleHandleA
GetProcAddress
ReadFile
GetWindowsDirectoryA
FindClose
GlobalFree

comctl32

ImageList_Destroy
ImageList_Create
ImageList_AddMasked

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

rpcrt4

NdrComplexArrayFree
UuidCreate

advapi32

RegCloseKey
RegEnumValueA
RegEnumKeyA
RegSetValueExA
RegOpenKeyExA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueExA

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea6e5ee38cd02626f818a4ff15714f24

Headers

File Characteristics

Imports

shell32

ole32

kernel32

comctl32

version

rpcrt4

advapi32

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 65KB - Virtual size: 64KB

.reloc Size: 1024B - Virtual size: 116KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 65KB - Virtual size: 64KB

.reloc
Size: 1024B - Virtual size: 116KB