92d2a28e55da018621f3e99e0c29f2c081bb302df85c8ea1eace2a49fbc83ae2

Sharing

Copy URL Twitter E-mail

General

Target

92d2a28e55da018621f3e99e0c29f2c081bb302df85c8ea1eace2a49fbc83ae2
Size

106KB
MD5

5fe3cd1a864377aede8eaf6ef9ce280c
SHA1

d08b0e343df92ec9371f5c7121f9edb7bfde359d
SHA256

92d2a28e55da018621f3e99e0c29f2c081bb302df85c8ea1eace2a49fbc83ae2
SHA512

4a77cd9625bf6c75143d61330d5f98bb8dc30efeaeec45baf6414e5f9b95ecdc44a231fb1636163266db633ca6d1960d21b6b6c09dcf158dd533da1b73df98a3
SSDEEP

1536:5FAnmg0oBVDj5aSIxJS9O8yqeMsAUMSXxgmGAuP9szG+RCedvHgbaXYFp77Rne:5umgdcW0OJgsAuFsKi5dvse

Score

N/A

Malware Config

Signatures

Files

92d2a28e55da018621f3e99e0c29f2c081bb302df85c8ea1eace2a49fbc83ae2
.exe windows x86

ff9099d543a8a9cf787e35b6be8116ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOEMCP
GetEnvironmentVariableA
GetSystemTime
VirtualProtectEx
RemoveDirectoryA
RtlUnwind
GlobalFree
lstrcmpiW
FreeEnvironmentStringsW
FileTimeToDosDateTime
GetNumberFormatA
LocalFree
GetFileType
GetModuleHandleW
GetCommandLineA

msvcrt

_XcptFilter
_except_handler3
memmove
_exit
free
strncmp
calloc
_initterm
atexit
__getmainargs
strlen
__p__commode
sqrt
__setusermatherr
__set_app_type
exit
_write
signal
sprintf
memset
_onexit
_snprintf
_controlfp
_vsnprintf
fflush
__p__fmode
__p___initenv
_adjust_fdiv

comdlg32

GetOpenFileNameA

user32

SetDlgItemTextA
RegisterClassA
UnhookWindowsHookEx
MapWindowPoints
GetWindowLongA
IsWindowVisible
LoadBitmapA
WindowFromPoint
DispatchMessageA
EnableWindow
SetClassLongA

advapi32

DeregisterEventSource
CryptHashData
FreeSid
EqualSid
GetUserNameA
SetSecurityDescriptorOwner
AdjustTokenPrivileges
QueryServiceStatus
LookupPrivilegeValueW
RegEnumValueW
RevertToSelf
RegQueryInfoKeyW
CopySid
CryptReleaseContext

gdi32

SetMapperFlags
OffsetWindowOrgEx
SetMapMode
FillPath
PolyBezierTo
EndDoc
SetEnhMetaFileBits
CreateFontIndirectA
CreateDIBPatternBrushPt
BitBlt

comctl32

ImageList_GetIcon
CreateStatusWindowA
ImageList_Draw
ImageList_EndDrag
ImageList_LoadImageA
ImageList_Remove
ImageList_BeginDrag
ImageList_DrawEx
ImageList_DragEnter
ImageList_SetDragCursorImage
CreateToolbarEx
ImageList_DragLeave
ImageList_Destroy
ImageList_Read
InitCommonControls

ole32

CoInitialize
IsAccelerator
OleInitialize
CoCreateInstance
CoTaskMemRealloc
RegisterDragDrop
CreateBindCtx
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
IIDFromString
CoGetClassObject

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ff9099d543a8a9cf787e35b6be8116ef

Headers

File Characteristics

Imports

kernel32

msvcrt

comdlg32

user32

advapi32

gdi32

comctl32

ole32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 9KB - Virtual size: 47KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 9KB - Virtual size: 47KB

.rsrc
Size: 26KB - Virtual size: 25KB