90940d1320123783bd0842589101ecd4839a0006954615fbd45b3280436746db

Sharing

Copy URL Twitter E-mail

General

Target

90940d1320123783bd0842589101ecd4839a0006954615fbd45b3280436746db
Size

153KB
MD5

e0994679b969a7fbddbda230a13e3a4d
SHA1

b4befd697c0c195859b3d2a9e661f5014a7d0bd9
SHA256

90940d1320123783bd0842589101ecd4839a0006954615fbd45b3280436746db
SHA512

6d4bc62b725ac764cd7e4d5d7055a571da5d7ce7cad9db42b18e720f1b61fbe40ebe60e664817d5407c4a927ae0a51c8c826a0ffbf2f697c68ce10d08612aa4c
SSDEEP

1536:clPrgVtLdL3kCZBo9qxO0NV8tmQxNifFhLCCQ32l5eHX0YwwuynpeR62580s:clPrAxL3ZgqxO0Nixy1AiQkY95eR6WF

Score

N/A

Malware Config

Signatures

Files

90940d1320123783bd0842589101ecd4839a0006954615fbd45b3280436746db
.exe windows x86

7da1916a0bd50cdebbb589c424e20eba

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EnumWindows
UnhookWindowsHookEx
GetSysColorBrush
SetWindowPos
SetWindowTextA
GetSysColor
EqualRect
FrameRect
GetScrollPos
GetSubMenu
PostQuitMessage
EnableMenuItem
GetMessageA

kernel32

GetFileAttributesA
FileTimeToSystemTime
GetTimeZoneInformation
GetACP
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTime
RtlUnwind
VirtualAllocEx
GetTickCount
ExitProcess
GetTempPathA
InterlockedExchange
SetUnhandledExceptionFilter
GetThreadLocale
GetStartupInfoA

gdi32

ExcludeClipRect
FillRgn
DPtoLP
SelectClipPath
SetViewportExtEx
CreateICW
CreateCompatibleBitmap
GetMapMode
CopyEnhMetaFileA

ole32

StgOpenStorage
CoTaskMemRealloc
CoRevokeClassObject
OleRun
DoDragDrop
CoInitialize
CoInitializeSecurity
CoCreateInstance
StringFromGUID2

advapi32

CheckTokenMembership
RegCreateKeyA
RegCreateKeyExW
AdjustTokenPrivileges
RegQueryValueExW
GetSecurityDescriptorDacl
GetUserNameA
CryptHashData
FreeSid
QueryServiceStatus

msvcrt

fflush
_CIpow
__getmainargs
puts
__setusermatherr
raise
strncpy
_mbscmp
strcspn
iswspace
fprintf
_lock
signal
_flsbuf
_fdopen
strlen
__initenv
_strdup

comctl32

ImageList_GetBkColor
CreatePropertySheetPageA
ImageList_GetIcon
ImageList_LoadImageA
ImageList_Write
ImageList_DragEnter
ImageList_LoadImageW
ImageList_SetIconSize
ImageList_GetIconSize
ImageList_DrawEx
ImageList_ReplaceIcon
ImageList_Destroy
InitCommonControls

shell32

ExtractIconW
DragQueryFileW
SHGetPathFromIDList
DragQueryFileA
DoEnvironmentSubstW
CommandLineToArgvW
SHBrowseForFolderA
DragAcceptFiles
ShellExecuteEx
ExtractIconExW
ShellExecuteW

oleaut32

SafeArrayPutElement
SafeArrayUnaccessData
SysReAllocStringLen
SafeArrayCreate
VariantCopy
SafeArrayPtrOfIndex
SafeArrayGetUBound
SafeArrayRedim

Sections

.text
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7da1916a0bd50cdebbb589c424e20eba

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 33KB - Virtual size: 33KB

.data Size: 40KB - Virtual size: 40KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 33KB - Virtual size: 33KB

.data
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 6KB - Virtual size: 5KB