2c189ac768636889e42cf0688d8dfebb99253fd723985233073d789fd1f47b75

Sharing

Copy URL Twitter E-mail

General

Target

2c189ac768636889e42cf0688d8dfebb99253fd723985233073d789fd1f47b75
Size

84KB
MD5

6e223036e459dc13653aff9556b8b421
SHA1

cd0215e92fcd0104e85876b64a171ffece6cc057
SHA256

2c189ac768636889e42cf0688d8dfebb99253fd723985233073d789fd1f47b75
SHA512

fdecd097f134395ecc13bc3dd485a97577a08ee83f47c3282e9ff408edc2db4442e292cc1454c2ecfe48e5d81bdcf4ce3f48c4381bf4c3cabdc0f6e633c14536
SSDEEP

1536:eb/zUPZwKpcnzRxW7KOmVJz1Du5itvLASPY8y1/Qkiwtp:ebbUPZwQczC7EdA2YfSwH

Score

N/A

Malware Config

Signatures

Files

2c189ac768636889e42cf0688d8dfebb99253fd723985233073d789fd1f47b75
.exe windows x86

e01c2863a0602d34dd122d4e956c2afe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
__p__fmode
signal
sqrt
__getmainargs
_write
__p__commode
_initterm
_exit
memset
_onexit
free
_except_handler3
__set_app_type
_acmdln
calloc
strcpy
exit
malloc
strcmp
__setusermatherr

kernel32

FreeLibrary
GetFileAttributesW
CreateProcessA
GetLocalTime
GetStartupInfoA
SetFileAttributesW
SetCurrentDirectoryA
EnumCalendarInfoA
WideCharToMultiByte
MultiByteToWideChar
WriteFile
GetModuleHandleW
IsDBCSLeadByte
lstrcmpiA
GetStdHandle
ReadFile

oleaut32

VariantCopyInd
SafeArrayCreate
VariantInit
SetErrorInfo
SysAllocStringLen
CreateErrorInfo
SysStringLen
SysStringByteLen
SysReAllocStringLen
SafeArrayUnaccessData

advapi32

RegDeleteKeyA
GetUserNameA
RegDeleteValueA
LookupPrivilegeValueW
CryptAcquireContextA
LookupPrivilegeValueA
CryptCreateHash
FreeSid
GetTokenInformation

user32

SetCapture
SetForegroundWindow
DrawFrameControl
EmptyClipboard
GetScrollPos
GetClassNameA
CallWindowProcA
SetWindowLongA
GetMenuStringA
CreateMenu
KillTimer
GetMenu

comctl32

ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_GetImageInfo
ImageList_DragLeave
PropertySheetA
ImageList_Add
CreatePropertySheetPageA
ImageList_Remove
ImageList_SetBkColor
CreateToolbarEx

ole32

RegisterDragDrop
CoDisconnectObject
CoLoadLibrary
OleDraw
CoRevokeClassObject
CoCreateInstance
CreateStreamOnHGlobal
OleInitialize
CLSIDFromString
CoGetInterfaceAndReleaseStream

gdi32

Chord
FillPath
DPtoLP
GetOutlineTextMetricsA
GetTextExtentExPointW
GetTextAlign
PtVisible
CreatePalette
Ellipse
SetPolyFillMode
GetRgnBox

Sections

.text
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e01c2863a0602d34dd122d4e956c2afe

Headers

File Characteristics

Imports

msvcrt

kernel32

oleaut32

advapi32

user32

comctl32

ole32

gdi32

Sections

.text Size: 2KB - Virtual size: 1KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 2KB - Virtual size: 1KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 3KB - Virtual size: 2KB