f051d000a09f44a2fb5c42a578b0a2946fa4c88f319c5f9fac210f0995c68165

Sharing

Copy URL Twitter E-mail

General

Target

f051d000a09f44a2fb5c42a578b0a2946fa4c88f319c5f9fac210f0995c68165
Size

79KB
MD5

e6566aef6e758e378ae73f324b93dcce
SHA1

da371ce5ebd3d9f8ffdd69bcc55b73a44ac86e4d
SHA256

f051d000a09f44a2fb5c42a578b0a2946fa4c88f319c5f9fac210f0995c68165
SHA512

2ffa130cd280a3b4e982d4d90bfdd0d87e62f0cbfb807e6457ea34551dc162623ea2d6afe5ae7263d8217a3768aa453157387950c254746121d0a8070ab71a50
SSDEEP

1536:6nIFuTbowerVvWa5IeHD+WQ34zAZJztg1T3Iw43uwg06HddkH5ZRmsH:yCazeJvF5hj+n4zYgx3gUE5

Score

N/A

Malware Config

Signatures

Files

f051d000a09f44a2fb5c42a578b0a2946fa4c88f319c5f9fac210f0995c68165
.exe windows x86

a60f900b9c85f08f069c38bdf2d7f59e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

EqualRect
GetSysColorBrush
SetWindowPos
GetScrollPos
EnumWindows
SetWindowTextA
FrameRect
UnhookWindowsHookEx
GetSubMenu
PostQuitMessage
GetMessageA
EnableMenuItem
GetSysColor

kernel32

GetSystemTime
ExitProcess
RtlUnwind
InterlockedExchange
GetTimeZoneInformation
GetFileAttributesA
GetThreadLocale
VirtualAllocEx
GetTickCount
GetTempPathA
FileTimeToSystemTime
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetStartupInfoA
GetCurrentProcessId

gdi32

CreateICW
CreateCompatibleBitmap
SelectClipPath
GetMapMode
CopyEnhMetaFileA
ExcludeClipRect
SetViewportExtEx
FillRgn
DPtoLP

ole32

CoInitialize
StringFromGUID2
CoInitializeSecurity
DoDragDrop
OleRun
StgOpenStorage
CoCreateInstance
CoRevokeClassObject
CoTaskMemRealloc

advapi32

AdjustTokenPrivileges
RegCreateKeyA
RegCreateKeyExW
QueryServiceStatus
CryptHashData
GetSecurityDescriptorDacl
RegQueryValueExW
FreeSid
GetUserNameA
CheckTokenMembership

msvcrt

strlen
iswspace
_fdopen
__getmainargs
__initenv
fflush
_flsbuf
__setusermatherr
fprintf
strcspn
signal
_lock
_mbscmp
_CIpow
_strdup
raise
puts
strncpy

comctl32

CreatePropertySheetPageA
ImageList_DrawEx
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_DragEnter
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetBkColor
InitCommonControls
ImageList_LoadImageW
ImageList_Write
ImageList_SetIconSize
ImageList_LoadImageA

shell32

ShellExecuteW
CommandLineToArgvW
SHGetPathFromIDList
ExtractIconExW
DragQueryFileW
SHBrowseForFolderA
ExtractIconW
DoEnvironmentSubstW
ShellExecuteEx
DragQueryFileA
DragAcceptFiles

oleaut32

SafeArrayRedim
SysReAllocStringLen
SafeArrayGetUBound
SafeArrayUnaccessData
SafeArrayPutElement
VariantCopy
SafeArrayCreate
SafeArrayPtrOfIndex

Sections

.text
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a60f900b9c85f08f069c38bdf2d7f59e

Headers

File Characteristics

Imports

user32

kernel32

gdi32

ole32

advapi32

msvcrt

comctl32

shell32

oleaut32

Sections

.text Size: 33KB - Virtual size: 32KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 6KB - Virtual size: 76KB

.text
Size: 33KB - Virtual size: 32KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 6KB - Virtual size: 76KB