8313d5c2f04be44ffed02f23ee59d27a7f578ed8dbbea32ec48e5bf46c70460a

Sharing

Copy URL Twitter E-mail

General

Target

8313d5c2f04be44ffed02f23ee59d27a7f578ed8dbbea32ec48e5bf46c70460a
Size

86KB
MD5

1009c543545cc09636912d27307f4460
SHA1

cbfedaf12f0c62c523518dd0fc139ac1b72e8e39
SHA256

8313d5c2f04be44ffed02f23ee59d27a7f578ed8dbbea32ec48e5bf46c70460a
SHA512

55bd6701fd7a7f9ee9989506213bde7e08cc36cc8f73817e053395082084497628980e976862a4380d31d29473e67709ae1e59fcb2d1bb421afe79c6015a9c05
SSDEEP

1536:UAN1DOwtZHBQij86XMBPqR2UWuM/jdXM+HRmrCr+pHwIG1w4G9oJUGiTcU7urX:dpOw7H+3ywzu0FMOr2wT1zG9oJAcGurX

Score

N/A

Malware Config

Signatures

Files

8313d5c2f04be44ffed02f23ee59d27a7f578ed8dbbea32ec48e5bf46c70460a
.exe windows x86

f0d42d42a5173d0a0d7a15f90bb9b766

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

calloc
__set_app_type
fread
malloc
fwrite
strstr
sprintf
_initterm
_acmdln
_adjust_fdiv
signal
_vsnprintf
_except_handler3
strncpy
strncmp
free
wcslen
_exit
__p__fmode
__getmainargs
memcpy
sqrt
__setusermatherr
fputc
strrchr
__p__commode

comdlg32

GetOpenFileNameA

kernel32

GetDiskFreeSpaceA
GetTimeZoneInformation
SetErrorMode
GetStartupInfoA
GetNumberFormatA
SetEnvironmentVariableA
GetLocalTime
GetCurrentProcessId
GetEnvironmentStringsW
CompareStringW
FlushFileBuffers
FileTimeToLocalFileTime

user32

ScreenToClient
GetSubMenu
DestroyWindow
WaitMessage
GetWindow
GetParent
GetIconInfo
SetDlgItemTextA
EndPaint
GetSysColor
GetMenuItemCount
RedrawWindow

comctl32

ImageList_SetIconSize
CreateToolbarEx
ImageList_LoadImageA
CreatePropertySheetPageA
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_DrawEx
ImageList_SetBkColor

gdi32

SetPixel
GetObjectType
GetTextMetricsW
GetCurrentPositionEx
GetStretchBltMode
BeginPath
GetViewportOrgEx
SetMapperFlags
Ellipse
CopyEnhMetaFileA
CreateSolidBrush
ArcTo
CreateHalftonePalette
FrameRgn

ole32

CoInitialize
DoDragDrop
CLSIDFromProgID
IIDFromString
CoInitializeSecurity
CoTaskMemAlloc
CoGetClassObject
CreateItemMoniker
OleSetMenuDescriptor
OleIsCurrentClipboard
RegisterDragDrop
StringFromGUID2
CoUninitialize
CLSIDFromString

advapi32

EqualSid
RegQueryInfoKeyA
DeleteService
AdjustTokenPrivileges
CryptHashData
RegEnumKeyExA
CloseServiceHandle
SetSecurityDescriptorDacl
OpenProcessToken

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0d42d42a5173d0a0d7a15f90bb9b766

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

comctl32

gdi32

ole32

advapi32

Sections

.text Size: 4KB - Virtual size: 4KB

.data Size: 9KB - Virtual size: 46KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 4KB - Virtual size: 4KB

.data
Size: 9KB - Virtual size: 46KB

.rsrc
Size: 17KB - Virtual size: 17KB