157621e258df37ced7619b9d3bebc1c5902fa3acdecc36788614645317cfab4c

Sharing

Copy URL Twitter E-mail

General

Target

157621e258df37ced7619b9d3bebc1c5902fa3acdecc36788614645317cfab4c
Size

166KB
MD5

ffd6367b947ee9483f69203a3f9a7ab7
SHA1

522ff29c4333742090528a4df2c6682ed5806519
SHA256

157621e258df37ced7619b9d3bebc1c5902fa3acdecc36788614645317cfab4c
SHA512

1a53f1494538473348d34bd60cadd620196ea7fc6e146f89dd5087ebe44e3ab40ae5920333b97baabdf4cd7bb9f86e6366d4ed6114223b67c76eee89872d461d
SSDEEP

1536:9PG/smLNOM0Um68QtEtQkMNmyQfBYKkD5UzHpsN8j1nSiqSIA630T4flfKnCy9KX:9AspMSXQt6HUGfWlDSzJI8hAK2EKvxmM

Score

N/A

Malware Config

Signatures

Files

157621e258df37ced7619b9d3bebc1c5902fa3acdecc36788614645317cfab4c
.exe windows x86

86a855eda797f1b7a42694439315b837

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_XcptFilter
__p__environ
signal
_iob
strncpy
memmove
__p__fmode
strrchr
_snprintf
_strnicmp
_except_handler3
_onexit
__set_app_type
_controlfp
__p___initenv
_exit
fputc
__setusermatherr
__getmainargs
exit
__p__commode
free
calloc
wcslen
_adjust_fdiv
_initterm

kernel32

SystemTimeToFileTime
GetModuleHandleW
GetModuleFileNameA
WritePrivateProfileStringA
GetStdHandle
GetUserDefaultLCID
GetCommandLineW
VirtualProtectEx
GetTickCount
GetCurrentDirectoryA
GetProcessHeap
GetProcAddress
FileTimeToDosDateTime
SetUnhandledExceptionFilter

ole32

CoGetInterfaceAndReleaseStream
CoReleaseMarshalData
IsAccelerator
CoGetMalloc
GetRunningObjectTable
OleFlushClipboard
OleIsCurrentClipboard
StgOpenStorage
OleUninitialize
CoRegisterMessageFilter
ReleaseStgMedium
CoTaskMemAlloc
CoFreeUnusedLibraries
OleSetClipboard

gdi32

ExtCreatePen
CopyMetaFileA
CreateDCA
GetBitmapBits
GetClipRgn
SetDIBitsToDevice
SelectObject
GetPixel
BitBlt
SaveDC
RoundRect
FrameRgn
SelectClipPath
AddFontResourceA

comctl32

DestroyPropertySheetPage
ImageList_SetImageCount
ImageList_Write
ImageList_Remove
ImageList_Draw
InitCommonControlsEx
ImageList_LoadImageA
ImageList_Destroy
InitCommonControls
ImageList_Read
ImageList_DragLeave

advapi32

RegDeleteValueA
OpenSCManagerA
RegQueryInfoKeyW
CryptAcquireContextA
InitiateSystemShutdownA
RegCreateKeyA
RegOpenKeyA
FreeSid
CryptDestroyHash
AllocateAndInitializeSid
OpenProcessToken
RegSetValueExA
CryptCreateHash
IsValidSid

user32

CharNextA
OffsetRect
GetMenuItemID
BeginPaint
ScreenToClient
CheckMenuItem
GetPropA
EnableMenuItem
IsDialogMessageA
EmptyClipboard
DestroyIcon

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 87KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

86a855eda797f1b7a42694439315b837

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

gdi32

comctl32

advapi32

user32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 64KB

.rsrc Size: 87KB - Virtual size: 88KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 64KB

.rsrc
Size: 87KB - Virtual size: 88KB