a9e579fe9db5947f85529c9a9dbc723bf8fe327003f923e08f7c9a36af319352

Sharing

Copy URL Twitter E-mail

General

Target

a9e579fe9db5947f85529c9a9dbc723bf8fe327003f923e08f7c9a36af319352
Size

79KB
MD5

499525fc0ec3e0f2b43f4681fd8d7fad
SHA1

3c3be0baba86d5b523e66cb85ef6c81d10fd6178
SHA256

a9e579fe9db5947f85529c9a9dbc723bf8fe327003f923e08f7c9a36af319352
SHA512

cf20f87fc666ccd9415b18d7774c1eacbd95c72c36f179b89ca31d502f46c8e87dcc2c3c952cd5e36068c1c70a57af63808b24e20bd84826467b93341919cbe1
SSDEEP

1536:HUWcKK2LVVK5ENSQI22iC43ELEmvZm+zMzA6p4OzzvfaYfMSM:4KKgVVX1C40bmbk44OzzSfS

Score

N/A

Malware Config

Signatures

Files

a9e579fe9db5947f85529c9a9dbc723bf8fe327003f923e08f7c9a36af319352
.exe windows x86

5faf71e404c8a6b4dc4c61811cea5af9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnableMenuItem
SetWindowPos
EqualRect
EnumWindows
FrameRect
SetWindowTextA
GetSysColor
UnhookWindowsHookEx
GetSysColorBrush
PostQuitMessage
GetScrollPos
GetMessageA
GetSubMenu

kernel32

GetTempPathA
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetOEMCP
GetCurrentProcessId
GetSystemTime
ExitProcess
VirtualAllocEx
GetACP
RtlUnwind
GetThreadLocale
GetTickCount
GetStartupInfoA
GetFileAttributesA
FileTimeToSystemTime
InterlockedExchange

gdi32

CreateCompatibleBitmap
FillRgn
CreateICW
DPtoLP
GetMapMode
SelectClipPath
ExcludeClipRect
CopyEnhMetaFileA
SetViewportExtEx

ole32

OleRun
DoDragDrop
CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoInitializeSecurity
CoInitialize
CoRevokeClassObject
StgOpenStorage

advapi32

RegCreateKeyExW
CheckTokenMembership
RegQueryValueExW
GetUserNameA
AdjustTokenPrivileges
FreeSid
CryptHashData
RegCreateKeyA
GetSecurityDescriptorDacl
QueryServiceStatus

msvcrt

_CIpow
signal
_mbscmp
puts
_lock
strcspn
_strdup
strncpy
raise
_fdopen
iswspace
fprintf
__setusermatherr
strlen
__initenv
fflush
__getmainargs
_flsbuf

comctl32

ImageList_ReplaceIcon
ImageList_GetBkColor
InitCommonControls
ImageList_Write
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_DragEnter
ImageList_DrawEx
CreatePropertySheetPageA
ImageList_GetIcon
ImageList_LoadImageW
ImageList_Destroy
ImageList_SetIconSize

shell32

SHBrowseForFolderA
DoEnvironmentSubstW
CommandLineToArgvW
ShellExecuteEx
DragQueryFileW
DragAcceptFiles
ExtractIconExW
ExtractIconW
DragQueryFileA
ShellExecuteW
SHGetPathFromIDList

oleaut32

SafeArrayGetUBound
SafeArrayPutElement
VariantCopy
SafeArrayPtrOfIndex
SafeArrayRedim
SafeArrayCreate
SysReAllocStringLen
SafeArrayUnaccessData

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5faf71e404c8a6b4dc4c61811cea5af9

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 40KB - Virtual size: 39KB

.rsrc Size: 6KB - Virtual size: 30KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 40KB - Virtual size: 39KB

.rsrc
Size: 6KB - Virtual size: 30KB