dfcec54e465398d523cb527e90ebbe79779398ed01d3f14325b8c3220b85a99c

Sharing

Copy URL

Twitter E-mail

General

Target

dfcec54e465398d523cb527e90ebbe79779398ed01d3f14325b8c3220b85a99c
Size

83KB
MD5

70315c8f48c9b329048aa71b4cb5d9d0
SHA1

17189896ef414f0d0d9bca57ee641d770f68f819
SHA256

dfcec54e465398d523cb527e90ebbe79779398ed01d3f14325b8c3220b85a99c
SHA512

5cd45726cac84869437a61369372da92df715f50dd9d3c14b229e6f31464946826660d83eadd98b9b9abdc1ffff828bafd8073844d53d1dd2b8255d56c1712c7
SSDEEP

1536:cUdO1X4MxPJJsxpbNNKiap9b7pCSIMngFCzqux/LnYeZbU6FtUTWuwBE/71MUv:PdO1IM/wpWiK9bZNngAqux/LnDZ46FOX

Score

N/A

Malware Config

Signatures

Files

dfcec54e465398d523cb527e90ebbe79779398ed01d3f14325b8c3220b85a99c
.exe windows x86

e0a16186429b869de2cf84d45a21c7a0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetSubMenu
SetWindowTextA
PostQuitMessage
SetWindowPos
GetScrollPos
EnableMenuItem
UnhookWindowsHookEx
FrameRect
EnumWindows
GetSysColor
EqualRect
GetSysColorBrush
GetMessageA

kernel32

GetOEMCP
RtlUnwind
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetTickCount
GetSystemTime
ExitProcess
FileTimeToSystemTime
GetStartupInfoA
GetTempPathA
InterlockedExchange
QueryPerformanceCounter
GetFileAttributesA
VirtualAllocEx
GetThreadLocale
GetCurrentProcessId

gdi32

CreateICW
DPtoLP
SelectClipPath
GetMapMode
CreateCompatibleBitmap
CopyEnhMetaFileA
FillRgn
SetViewportExtEx
ExcludeClipRect

ole32

CoRevokeClassObject
OleRun
DoDragDrop
CoTaskMemRealloc
StgOpenStorage
StringFromGUID2
CoCreateInstance
CoInitializeSecurity
CoInitialize

advapi32

CryptHashData
FreeSid
RegCreateKeyExW
AdjustTokenPrivileges
RegCreateKeyA
CheckTokenMembership
GetUserNameA
RegQueryValueExW
GetSecurityDescriptorDacl
QueryServiceStatus

msvcrt

_CIpow
raise
__setusermatherr
strncpy
strcspn
_fdopen
_mbscmp
_flsbuf
__getmainargs
puts
fprintf
__initenv
fflush
strlen
_lock
_strdup
iswspace
signal

comctl32

InitCommonControls
ImageList_LoadImageW
ImageList_ReplaceIcon
ImageList_LoadImageA
ImageList_GetIcon
ImageList_GetBkColor
ImageList_Write
CreatePropertySheetPageA
ImageList_GetIconSize
ImageList_DragEnter
ImageList_Destroy
ImageList_SetIconSize
ImageList_DrawEx

shell32

ExtractIconW
DragQueryFileW
DragAcceptFiles
DragQueryFileA
ExtractIconExW
SHGetPathFromIDList
ShellExecuteEx
DoEnvironmentSubstW
ShellExecuteW
SHBrowseForFolderA
CommandLineToArgvW

oleaut32

SafeArrayRedim
SafeArrayGetUBound
SysReAllocStringLen
SafeArrayCreate
VariantCopy
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayUnaccessData

Sections

.text
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e0a16186429b869de2cf84d45a21c7a0

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 34KB - Virtual size: 34KB

.data Size: 41KB - Virtual size: 41KB

.rsrc Size: 6KB - Virtual size: 84KB

.text
Size: 34KB - Virtual size: 34KB

.data
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 6KB - Virtual size: 84KB