a5f0944d6e66ddff4ce2a6a63203f289b2aa391706c65a099526c53e1d5adb01

Sharing

Copy URL Twitter E-mail

General

Target

a5f0944d6e66ddff4ce2a6a63203f289b2aa391706c65a099526c53e1d5adb01
Size

83KB
MD5

59a49aa1185ac57781a56b83aafc0edf
SHA1

000aa1a6c83a2849b3a34ef9e2a839993030a3e3
SHA256

a5f0944d6e66ddff4ce2a6a63203f289b2aa391706c65a099526c53e1d5adb01
SHA512

41e389ec2547eb2113690d99f452d0a1960e28d63b23953388fca40a955494586f9dc8b3090173d1b7fa13de52057bb6ff4cdbc2d3997ba15ea1e3312cb43659
SSDEEP

1536:eBAi1ihrhNkiHxaLuDzDskkAEJ1OO6P8RS1ngjgIgzfU1SXVBpBIW5uB2Whf1gTL:w2rhNkiHxSKs590O6P8Rg0gIgzsEVP6C

Score

N/A

Malware Config

Signatures

Files

a5f0944d6e66ddff4ce2a6a63203f289b2aa391706c65a099526c53e1d5adb01
.exe windows x86

0797508126e5a78c4b55a8b3156176a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetMessageA
FrameRect
GetScrollPos
PostQuitMessage
GetSubMenu
UnhookWindowsHookEx
SetWindowTextA
EnableMenuItem
EqualRect
EnumWindows
GetSysColorBrush
GetSysColor
SetWindowPos

kernel32

GetFileAttributesA
QueryPerformanceCounter
GetSystemTime
RtlUnwind
InterlockedExchange
SetUnhandledExceptionFilter
GetStartupInfoA
GetTempPathA
GetCurrentProcessId
GetThreadLocale
GetTickCount
GetACP
GetTimeZoneInformation
ExitProcess
FileTimeToSystemTime
GetOEMCP
VirtualAllocEx

gdi32

FillRgn
SelectClipPath
CreateCompatibleBitmap
SetViewportExtEx
DPtoLP
CopyEnhMetaFileA
GetMapMode
ExcludeClipRect
CreateICW

ole32

DoDragDrop
StgOpenStorage
OleRun
StringFromGUID2
CoRevokeClassObject
CoInitialize
CoCreateInstance
CoTaskMemRealloc
CoInitializeSecurity

advapi32

QueryServiceStatus
RegCreateKeyExW
FreeSid
CheckTokenMembership
RegQueryValueExW
GetUserNameA
AdjustTokenPrivileges
GetSecurityDescriptorDacl
CryptHashData
RegCreateKeyA

msvcrt

_mbscmp
_strdup
strlen
__setusermatherr
strncpy
_lock
raise
signal
__initenv
puts
_fdopen
_flsbuf
_CIpow
strcspn
fflush
fprintf
__getmainargs
iswspace

comctl32

ImageList_DrawEx
CreatePropertySheetPageA
ImageList_GetBkColor
ImageList_SetIconSize
ImageList_ReplaceIcon
ImageList_GetIconSize
ImageList_DragEnter
ImageList_LoadImageA
ImageList_GetIcon
InitCommonControls
ImageList_Destroy
ImageList_Write
ImageList_LoadImageW

shell32

ShellExecuteW
SHGetPathFromIDList
DragQueryFileA
SHBrowseForFolderA
ExtractIconW
DragQueryFileW
ShellExecuteEx
CommandLineToArgvW
DragAcceptFiles
DoEnvironmentSubstW
ExtractIconExW

oleaut32

SafeArrayUnaccessData
SafeArrayPutElement
VariantCopy
SafeArrayPtrOfIndex
SafeArrayGetUBound
SysReAllocStringLen
SafeArrayCreate
SafeArrayRedim

Sections

.text
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0797508126e5a78c4b55a8b3156176a8

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 35KB - Virtual size: 34KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 6KB - Virtual size: 7KB

.text
Size: 35KB - Virtual size: 34KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 6KB - Virtual size: 7KB