af9c25c6bc3898ddbebbb3c625b0ffdac7de147fa7e5c62d2810539c87a74711

Sharing

Copy URL Twitter E-mail

General

Target

af9c25c6bc3898ddbebbb3c625b0ffdac7de147fa7e5c62d2810539c87a74711
Size

137KB
MD5

59a903e542bc95fe70eab6f39c485227
SHA1

08038a6d81472224263d5b3996e49ace82fd1ccc
SHA256

af9c25c6bc3898ddbebbb3c625b0ffdac7de147fa7e5c62d2810539c87a74711
SHA512

7d46fe93638f993cf835e7666f5aa9160c22becd28314aea6f2214ec3868ea3312057328c707d58a11e98a7f77f7acdfd686f4ab883f01cd2cd4aa47bdeba04d
SSDEEP

3072:6WafI+vMOy46rOUiLh3HQT6u1IOIRey2RgP7DeMU:GGOUit06uOOIReLj

Score

N/A

Malware Config

Signatures

Files

af9c25c6bc3898ddbebbb3c625b0ffdac7de147fa7e5c62d2810539c87a74711
.exe windows x86

e9e8314ecbec82422d2025eea053b67b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memcpy

shlwapi

StrFormatByteSizeW
PathIsContentTypeA
SHRegEnumUSKeyA
ord156
StrCmpNW
SHRegSetPathA

shell32

ord100
SHGetFolderPathW

kernel32

lstrcmpiA
GetProcAddress
GetSystemInfo
lstrcmpiW
GetModuleHandleA
lstrcatW
OpenFile
SetFilePointer
PeekNamedPipe
SetFilePointerEx
_lclose
GetTempPathW
EnumResourceTypesA
HeapDestroy
GetHandleInformation
GetLongPathNameW
GetAtomNameA
LocalAlloc
SetThreadIdealProcessor
WaitForMultipleObjects
GetFileTime
_lopen
CloseHandle
GetThreadTimes
CopyFileExA
DeleteFileA
lstrcpyA
LoadLibraryW
FormatMessageA
GetModuleHandleW
FindResourceA
LocalFileTimeToFileTime
FileTimeToSystemTime
FormatMessageW
_lcreat
DosDateTimeToFileTime
FileTimeToDosDateTime
ClearCommBreak

user32

RemovePropW
EnumPropsW
EndPaint
LoadCursorA
IsWindowVisible
CharUpperW
CreateIcon
GetWindowPlacement
GetForegroundWindow
DlgDirListA
SetFocus
CharUpperBuffW
SetMenuItemBitmaps
InvalidateRgn
SendMessageA
BeginPaint
TranslateMessage
LockWindowUpdate
GetCursorInfo
SetPropA
SetScrollPos
PeekMessageA
ReleaseDC
TranslateAcceleratorA
GetWindowRgn
LoadAcceleratorsA
DispatchMessageA
SetMenuItemInfoA
GetPropW
GetDC
GetDesktopWindow
PostMessageW
LoadCursorFromFileA
SetWindowTextW

gdi32

UpdateColors
SetTextCharacterExtra
OffsetClipRgn
AngleArc
SetBkColor
LineTo
SetViewportExtEx
GetSystemPaletteEntries
CreateScalableFontResourceW
GetCharWidth32A
SetBoundsRect
ExtCreateRegion
DeleteDC
GetTextExtentPoint32A
CreateCompatibleDC
CreateCompatibleBitmap
GetBitmapBits

advapi32

PrivilegedServiceAuditAlarmW
EqualPrefixSid
EqualSid
ObjectDeleteAuditAlarmA
GetSidLengthRequired

Exports

Exports

_Copy_Png@12
_Create_Png@12
_Set_Png@12
_Update_Png@12

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vars
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zero
Size: 1024B - Virtual size: 664B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.const
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

IMPORT
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 710B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9e8314ecbec82422d2025eea053b67b

Headers

File Characteristics

Imports

ntdll

shlwapi

shell32

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.code Size: 7KB - Virtual size: 7KB

.data Size: - Virtual size: 160B

.vars Size: 512B - Virtual size: 512B

.zero Size: 1024B - Virtual size: 664B

.const Size: 512B - Virtual size: 44B

IMPORT Size: 3KB - Virtual size: 3KB

.rsrc Size: 116KB - Virtual size: 115KB

.reloc Size: 1024B - Virtual size: 710B

.text
Size: 6KB - Virtual size: 5KB

.code
Size: 7KB - Virtual size: 7KB

.data
Size: - Virtual size: 160B

.vars
Size: 512B - Virtual size: 512B

.zero
Size: 1024B - Virtual size: 664B

.const
Size: 512B - Virtual size: 44B

IMPORT
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 116KB - Virtual size: 115KB

.reloc
Size: 1024B - Virtual size: 710B