53f4306be50391846a73cfe6c862c280afb10007101bab589e1e874b1d49787c

Sharing

Copy URL

Twitter E-mail

General

Target

53f4306be50391846a73cfe6c862c280afb10007101bab589e1e874b1d49787c
Size

89KB
MD5

65d1f5be13d1b6907718e2c5c9d9e0ce
SHA1

26e68e3b0f78f194d8655817292ed1b1e84696bd
SHA256

53f4306be50391846a73cfe6c862c280afb10007101bab589e1e874b1d49787c
SHA512

e3abaa33e2e5d22fd1c869902e4a0d5640879d4d1e61cec8ff4375a33230a2d56940344b2ba88275493db4a2853fecb6f6c070604f05caadd9c085db4f0f7b02
SSDEEP

1536:QaFKchMo/qrDLlSborgPJwMRlx0j3Alo7CXF4TbiamIh3U36P4kNSKWn30htSDQv:/DhMiCvYbHu4lx0j3+XXFMbDSc8ktYS5

Score

N/A

Malware Config

Signatures

Files

53f4306be50391846a73cfe6c862c280afb10007101bab589e1e874b1d49787c
.exe windows x86

7e29c69391c8508d25c13c8335479ce7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
exit
atexit
_adjust_fdiv
strcpy
_initterm
memmove
__getmainargs
__set_app_type
getenv
malloc
__setusermatherr
__p__commode
sqrt
_acmdln
_setmode
strncmp
free
__p__fmode
calloc
realloc
_exit
fclose

kernel32

FormatMessageA
GetSystemDefaultLCID
ReadFile
InterlockedDecrement
GetModuleHandleW
FreeLibrary
GetCurrentDirectoryA
WriteFile
ExpandEnvironmentStringsA
GetModuleFileNameW
GetLocalTime
GetStartupInfoA
InterlockedCompareExchange
GetCurrentProcess
GetModuleHandleA
DuplicateHandle
GlobalUnlock

advapi32

RegEnumValueW
InitializeAcl
InitializeSecurityDescriptor
CryptHashData
CheckTokenMembership
GetLengthSid
CryptReleaseContext
CryptGenRandom
CryptCreateHash
LookupPrivilegeValueW

user32

AdjustWindowRectEx
EnableMenuItem
SetCapture
DrawEdge
wsprintfA
DefWindowProcA
ClientToScreen
DispatchMessageA
DrawTextA
CheckMenuItem
KillTimer
GetWindowRect

ole32

CoGetInterfaceAndReleaseStream
CLSIDFromString
OleFlushClipboard
IsEqualGUID
CoCreateInstance
CoRevokeClassObject
CreateILockBytesOnHGlobal
ReleaseStgMedium
OleGetClipboard
CoReleaseMarshalData

comctl32

ImageList_Create
InitCommonControlsEx
DestroyPropertySheetPage
InitCommonControls
ImageList_Destroy
CreatePropertySheetPageA

oleaut32

SafeArrayRedim
SafeArrayGetUBound
SafeArrayPutElement
GetErrorInfo
SetErrorInfo
SysStringLen
SysAllocStringLen
VariantInit
LoadTypeLib
SafeArrayUnaccessData
SysAllocStringByteLen
SafeArrayGetElement
VariantClear

gdi32

AddFontResourceA
SetTextJustification
SelectPalette
Polygon
CreatePolygonRgn
CreateDIBitmap
MoveToEx
GetMapMode
ExcludeClipRect
GetTextExtentPoint32A
CreateFontIndirectW

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e29c69391c8508d25c13c8335479ce7

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

ole32

comctl32

oleaut32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 21KB - Virtual size: 21KB

.data Size: 62KB - Virtual size: 61KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 21KB - Virtual size: 21KB

.data
Size: 62KB - Virtual size: 61KB

.rsrc
Size: 3KB - Virtual size: 2KB