135a342b904e9b735710a252bca63c26567547a59edbc5bfbac94fb9eeac1f50

Sharing

Copy URL Twitter E-mail

General

Target

135a342b904e9b735710a252bca63c26567547a59edbc5bfbac94fb9eeac1f50
Size

111KB
MD5

ebee05c7d98c9128d02f9d05c1cf709b
SHA1

8b70fb4f077edc9b74d6529e8136ec4b5ec438b4
SHA256

135a342b904e9b735710a252bca63c26567547a59edbc5bfbac94fb9eeac1f50
SHA512

edc6a69e9901e19dfa6868e35c049fa1ed75ffa11441cbfac11806a21548cae94e981d59232e731c2b62f3b4ff5a9a3768df19908e9a1e829bf43e3717970e39
SSDEEP

1536:26uMakFk59fee34soidnoWQZDiVjnyoigY8O7TsI0jfynLP:26u600e31ddoWeuVjnyoigITV0jaL

Score

N/A

Malware Config

Signatures

Files

135a342b904e9b735710a252bca63c26567547a59edbc5bfbac94fb9eeac1f50
.exe windows x86

ff2a546c662ec1f911ac58e02e606f5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SetWindowTextA
SetWindowPos
UnhookWindowsHookEx
GetSubMenu
GetScrollPos
EnableMenuItem
PostQuitMessage
FrameRect
EnumWindows
GetSysColorBrush
GetMessageA
EqualRect
GetSysColor

kernel32

SetUnhandledExceptionFilter
GetTimeZoneInformation
FileTimeToSystemTime
GetOEMCP
GetThreadLocale
GetSystemTime
GetTickCount
GetCurrentProcessId
VirtualAllocEx
GetStartupInfoA
GetACP
GetFileAttributesA
ExitProcess
RtlUnwind
GetTempPathA
InterlockedExchange

gdi32

ExcludeClipRect
SelectClipPath
DPtoLP
CreateICW
FillRgn
SetViewportExtEx
CopyEnhMetaFileA
CreateCompatibleBitmap
GetMapMode

ole32

CoRevokeClassObject
CoInitialize
OleRun
CoInitializeSecurity
CoTaskMemRealloc
DoDragDrop
CoCreateInstance
StringFromGUID2
StgOpenStorage

advapi32

CryptHashData
GetSecurityDescriptorDacl
AdjustTokenPrivileges
FreeSid
RegCreateKeyA
QueryServiceStatus
GetUserNameA
RegCreateKeyExW
CheckTokenMembership
RegQueryValueExW

msvcrt

iswspace
puts
_lock
_mbscmp
_strdup
fprintf
__initenv
strncpy
_fdopen
signal
__getmainargs
__setusermatherr
strcspn
raise
fflush
_flsbuf
strlen
_CIpow

comctl32

ImageList_DrawEx
ImageList_Destroy
ImageList_ReplaceIcon
CreatePropertySheetPageA
ImageList_GetIconSize
InitCommonControls
ImageList_SetIconSize
ImageList_LoadImageW
ImageList_GetBkColor
ImageList_GetIcon
ImageList_Write
ImageList_LoadImageA
ImageList_DragEnter

shell32

SHGetPathFromIDList
CommandLineToArgvW
ShellExecuteEx
ShellExecuteW
SHBrowseForFolderA
DoEnvironmentSubstW
ExtractIconW
DragAcceptFiles
DragQueryFileW
ExtractIconExW
DragQueryFileA

oleaut32

SafeArrayRedim
VariantCopy
SafeArrayPutElement
SafeArrayCreate
SysReAllocStringLen
SafeArrayGetUBound
SafeArrayUnaccessData
SafeArrayPtrOfIndex

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 140KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ff2a546c662ec1f911ac58e02e606f5a

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 35KB - Virtual size: 35KB

.data Size: 41KB - Virtual size: 40KB

.rsrc Size: 34KB - Virtual size: 140KB

.text
Size: 35KB - Virtual size: 35KB

.data
Size: 41KB - Virtual size: 40KB

.rsrc
Size: 34KB - Virtual size: 140KB