959eeb6f774d39b1094bb4d52623e19381bc56613e8a0411feb0056b800d0bf7

Sharing

Copy URL

Twitter E-mail

General

Target

959eeb6f774d39b1094bb4d52623e19381bc56613e8a0411feb0056b800d0bf7
Size

135KB
MD5

baa32c6c5b95017332fb7c182ecf8cfd
SHA1

8949558c42635294b6557d12cec72b3f628a9dc2
SHA256

959eeb6f774d39b1094bb4d52623e19381bc56613e8a0411feb0056b800d0bf7
SHA512

a1a37f9fd193902765dc818591aabdd1c5766feccf3dff024e93a65bc2058d90329b095a114c7613a92a1a4ec0375928e6f044cb17345b39ecaa0f67afff672b
SSDEEP

1536:6imc6EgCmtBh+8yqxqZi/9UdnxOCqH+3kXy/vTtLQOZKN6OU4dfM6Ja1VguewQQv:qYe+SQa9ckx+xJoNFW6JyXektTP7B

Score

N/A

Malware Config

Signatures

Files

959eeb6f774d39b1094bb4d52623e19381bc56613e8a0411feb0056b800d0bf7
.exe windows x86

89debf92feaf7648ed1f851ed403a733

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

RtlUnwind
GetStartupInfoA
GetLocalTime
GetLocaleInfoA
lstrcmpiW
GetThreadLocale
GetFileAttributesW
VirtualProtect
lstrcpynA
GetModuleHandleA
GetLastError

msvcrt

_strcmpi
__p__fmode
_adjust_fdiv
__getmainargs
_initterm
_XcptFilter
strcat
__p__commode
strncmp
__set_app_type
log
isdigit
__setusermatherr
_beginthreadex
_acmdln
exit
_except_handler3
fclose

user32

EndDialog
FrameRect
PostQuitMessage
CreatePopupMenu
GetSystemMenu
GetSystemMetrics
DestroyMenu
SetWindowPos
GetCursorPos
GetIconInfo

advapi32

RegEnumKeyExW
GetUserNameA
AllocateAndInitializeSid
RevertToSelf
RegEnumKeyW
CryptDestroyHash
OpenProcessToken
QueryServiceStatus

oleaut32

GetErrorInfo
SysFreeString
SafeArrayUnaccessData
SafeArrayGetElement
SetErrorInfo
SafeArrayCreate
SafeArrayRedim
GetActiveObject
VariantClear

gdi32

TranslateCharsetInfo
CreateDIBPatternBrushPt
SetTextColor
FillRgn

comctl32

CreateToolbarEx
CreatePropertySheetPageA
ImageList_GetImageInfo

ole32

CoGetMalloc
CoSetProxyBlanket
OleRun
ReleaseStgMedium
DoDragDrop
OleInitialize
CoUninitialize
CoFreeUnusedLibraries

version

VerQueryValueA
GetFileVersionInfoSizeW
VerQueryValueW
VerInstallFileA
VerFindFileW

shell32

ExtractIconExA
ShellExecuteExW
SHGetFolderPathA
ExtractAssociatedIconW
SHFileOperationA
CommandLineToArgvW
Shell_NotifyIconW

Sections

.text
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89debf92feaf7648ed1f851ed403a733

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

oleaut32

gdi32

comctl32

ole32

version

shell32

Sections

.text Size: 63KB - Virtual size: 62KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 22KB - Virtual size: 21KB

.text
Size: 63KB - Virtual size: 62KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 22KB - Virtual size: 21KB