1a3c780d18762f74096b98f572e2132c9de354e5e77824f122ae78c8edaf039f

General

Target

1a3c780d18762f74096b98f572e2132c9de354e5e77824f122ae78c8edaf039f
Size

825KB
MD5

bbe240261b2956bc5e2f9909351cff63
SHA1

5d50ac1cdcded4713e9b969f15d6b00d4d5f315e
SHA256

1a3c780d18762f74096b98f572e2132c9de354e5e77824f122ae78c8edaf039f
SHA512

e6013b734fd433be5039034ad5866b4251c707aabc0f9c128f8f84750cf34919de9d8666f360109104024e59cb97656099296c20be7ae59fc70dfac24ae1490f
SSDEEP

24576:ZI6T9V72mwhzfJlWOAbIi1LTdU2NrN+u:ZIIP2nhzjTAki1LTdZNR

Score

N/A

Malware Config

Signatures

Files

1a3c780d18762f74096b98f572e2132c9de354e5e77824f122ae78c8edaf039f
.exe windows x86

a516f0e861c06ec79b3d8e21d5ff6b5d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

uxtheme

CloseThemeData
GetThemeBool
GetThemeColor
GetThemeEnumValue
OpenThemeData
GetWindowTheme
GetThemeSysSize
DrawThemeBackground
GetThemeInt

clbcatq

DllGetClassObject
CheckMemoryGates

kernel32

IsBadWritePtr
EncodePointer
GetModuleFileNameA
GetAtomNameA
CreateSemaphoreA
CreateEventA
OpenMutexA
GetProcAddress
DecodeSystemPointer
GetEnvironmentVariableA
SetCurrentDirectoryA
lstrcmpiA
VirtualQueryEx
lstrcmpA
MoveFileA
IsBadStringPtrA
GetPrivateProfileSectionA
VirtualProtectEx
LoadLibraryA
CreateMutexA

shell32

SHGetDiskFreeSpaceA
DragAcceptFiles
ExtractIconA
StrChrA
DuplicateIcon
ShellMessageBoxA
DragQueryPoint

crypt32

CertDeleteCRLFromStore
CertFindCRLInStore
CertNameToStrA
CertCompareCertificate
CertControlStore
CertCreateContext
CertDuplicateCRLContext
CertFindAttribute

ntshrui

IsFolderPrivateForUser
IsPathSharedW
GetLocalPathFromNetResourceA
IsPathSharedA

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 806KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a516f0e861c06ec79b3d8e21d5ff6b5d

Headers

DLL Characteristics

File Characteristics

Imports

uxtheme

clbcatq

kernel32

shell32

crypt32

ntshrui

Sections

.text Size: 18KB - Virtual size: 17KB

.rsrc Size: 806KB - Virtual size: 2.2MB

.text
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 806KB - Virtual size: 2.2MB