c830e38ad34d59455c476df5a6ee39a443fa160dfafc113fa2827bf79bd353ac

Sharing

Copy URL

Twitter E-mail

General

Target

c830e38ad34d59455c476df5a6ee39a443fa160dfafc113fa2827bf79bd353ac
Size

114KB
MD5

a122cf0f78cb48ae9f299086e8c965c2
SHA1

cd1f7bcfe4a0d5e3750d7990c828a5ca76631475
SHA256

c830e38ad34d59455c476df5a6ee39a443fa160dfafc113fa2827bf79bd353ac
SHA512

179da02b1c24f3bd6d724115e6fa17e7cc7b3f1b6546d6047d2467db0bf103fb3c161b27157574b7839468f223b91877c8e687f1027bfe694d9f3e8ef4dedfae
SSDEEP

1536:1Wf0rCCh7eXxkTafF+R2AFn8FKLRchkwL+Eny9Vgu7WcNkBMfGJUJ0MjhStAYIak:gfaIxd2B6hUoa7WcTU0FeA1qViULAHH

Score

N/A

Malware Config

Signatures

Files

c830e38ad34d59455c476df5a6ee39a443fa160dfafc113fa2827bf79bd353ac
.exe windows x86

bf9a2c6bde6a988fa69606260914a2b7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
_initterm
_snprintf
fwrite
_onexit
__getmainargs
__p___initenv
_except_handler3
__p__commode
_XcptFilter
sqrt
calloc
__p__fmode
__set_app_type
strcpy
_cexit
getenv
_strnicmp
strncpy
_adjust_fdiv
free
__setusermatherr
_stricmp
_exit

comdlg32

GetOpenFileNameA

kernel32

RemoveDirectoryA
WideCharToMultiByte
GetModuleHandleW
GetSystemTime
lstrcmpiW
ExpandEnvironmentStringsA
GetNumberFormatA
GetFileAttributesW
UnhandledExceptionFilter
WaitForMultipleObjects
FileTimeToDosDateTime
GetSystemDefaultLCID
SetFileTime
lstrcpyA
VirtualProtectEx
SetLastError
LCMapStringW
GlobalHandle

user32

EnableWindow
SetScrollPos
MessageBeep
GetTopWindow
DestroyIcon
SetDlgItemTextA
DestroyCursor
GetMenuStringA
SetWindowPlacement
DialogBoxParamA
FillRect
InvalidateRect

advapi32

AddAccessAllowedAce
SetSecurityDescriptorGroup
CryptReleaseContext
RegEnumValueW
LookupPrivilegeValueA
IsValidSid
GetTokenInformation
EqualSid

comctl32

PropertySheetA
InitCommonControlsEx
ImageList_Replace
CreatePropertySheetPageW
CreatePropertySheetPageA
ImageList_DragShowNolock
ImageList_DragLeave
ImageList_LoadImageA
ImageList_Remove
ImageList_GetBkColor
ImageList_Write
ImageList_AddMasked
ImageList_EndDrag
ImageList_Create

ole32

StringFromCLSID
CreateItemMoniker
StringFromIID
CoGetClassObject
CoInitializeEx
CLSIDFromProgID
RegisterDragDrop
StgCreateDocfileOnILockBytes
CoCreateGuid
GetRunningObjectTable
StgOpenStorage
OleFlushClipboard
RevokeDragDrop

gdi32

GetNearestColor
SetWinMetaFileBits
RestoreDC
GetCurrentPositionEx
SelectClipPath
GetEnhMetaFileDescriptionA
GetDIBColorTable
CreateBitmap
CloseMetaFile
GetCurrentObject
GetBkColor

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf9a2c6bde6a988fa69606260914a2b7

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

advapi32

comctl32

ole32

gdi32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 49KB

.rsrc Size: 23KB - Virtual size: 22KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 49KB

.rsrc
Size: 23KB - Virtual size: 22KB