7046c469b0d4d0b53e4707e63fc09e1d3948d7762da569e433b00fa03053b5f0

Sharing

Copy URL Twitter E-mail

General

Target

7046c469b0d4d0b53e4707e63fc09e1d3948d7762da569e433b00fa03053b5f0
Size

272KB
MD5

89dddc7105e3f8596b94908b5270bd13
SHA1

6a9dcb2e2b1bf796f3686ec7f50e7db52b81b370
SHA256

7046c469b0d4d0b53e4707e63fc09e1d3948d7762da569e433b00fa03053b5f0
SHA512

d77fa90fc610565625875533d789c6c46aacc11a071ed5f066d042225bf69d16236da52f3903952fdc7423109aa18332c86e24366b7364b32f954cffae0c9f46
SSDEEP

6144:Hl6RWBdZVb2mZriTgY6WvhgyV5SMRWd4BQcPu:FoaHVqmr9mbZs

Score

N/A

Malware Config

Signatures

Files

7046c469b0d4d0b53e4707e63fc09e1d3948d7762da569e433b00fa03053b5f0
.exe windows x86

32d24ee733b608c4acadbd03b961a557

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

HBRUSH_UserSize
GetRunningObjectTable
CoInstall
HWND_UserSize
HICON_UserSize
OleSaveToStream
CoLoadLibrary
OleCreateFromFileEx
OleSetClipboard
CoInitializeSecurity
OleGetIconOfFile
CreateErrorInfo
CoQueryClientBlanket

hhsetup

?AddFolder@CCollection@@QAEPAVCFolder@@PBDKPAKG@Z
?WriteFolder@CCollection@@AAEHPAPAVCFolder@@@Z
?MergeKeywords@CCollection@@QAEHPAD@Z
?SetId@CLocation@@QAEXPBD@Z
?SetPath@CLocation@@QAEXPBD@Z
?RemoveCollection@CCollection@@QAEKH@Z
?GetTitle@CFolder@@QAEPADXZ
?GetIdW@CTitle@@QAEPBGXZ
?SetTitle@CLocation@@QAEXPBG@Z

catsrvut

??4CComPlusMethod@@QAEAAV0@ABV0@@Z
?GetITypeLib@CComPlusTypelib@@QAEPAUITypeLib@@XZ
??4CComPlusInterface@@QAEAAV0@ABV0@@Z
??_7CComPlusObject@@6B@
??0CComPlusObject@@QAE@ABV0@@Z
RegDBRestore
??_7CComPlusMethod@@6B@
??4CComPlusTypelib@@QAEAAV0@ABV0@@Z
QueryUserDllW
??4CComPlusObject@@QAEAAV0@ABV0@@Z

crypt32

CryptSIPVerifyIndirectData
CryptLoadSip
CryptMsgVerifyCountersignatureEncoded
CryptGetMessageCertificates
CertVerifyCTLUsage
CertOpenSystemStoreA
CryptProtectData
CertAddEncodedCertificateToStore
CryptMsgControl
CertEnumSystemStore
I_CryptGetDefaultCryptProvForEncrypt
CertGetPublicKeyLength
I_CryptFlushLruCache
CryptExportPublicKeyInfoEx

gdi32

GetDeviceGammaRamp
GdiGetLocalBrush
GdiEntry5
GdiDescribePixelFormat
RemoveFontResourceExW

kernel32

DeleteFileA
GlobalFindAtomW
WriteConsoleW
LCMapStringA
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetProfileSectionW
LoadLibraryA

Sections

.text
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

32d24ee733b608c4acadbd03b961a557

Headers

File Characteristics

Imports

ole32

hhsetup

catsrvut

crypt32

gdi32

kernel32

Sections

.text Size: 127KB - Virtual size: 126KB

.rdata Size: 61KB - Virtual size: 61KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 40KB - Virtual size: 39KB

.text
Size: 127KB - Virtual size: 126KB

.rdata
Size: 61KB - Virtual size: 61KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 40KB - Virtual size: 39KB