148b477743a4d21bfe1606129b8ba1ef0e580fac52991c4d160a47d541878fca

Sharing

Copy URL Twitter E-mail

General

Target

148b477743a4d21bfe1606129b8ba1ef0e580fac52991c4d160a47d541878fca
Size

146KB
MD5

86eaac1f6f2239b45af3148c91bec24f
SHA1

3727821436a68f12b2f481196e465c795f028fe0
SHA256

148b477743a4d21bfe1606129b8ba1ef0e580fac52991c4d160a47d541878fca
SHA512

5ae0923d9ccb5e3847568e10d3f345c1ec8eb6d42d97b04e645bdf1b7bb9c5815cd921702284f3444771bf4f5f18492ec47a88337c9f96f16d67a0eea2d059a4
SSDEEP

3072:lTCPLcihnZdxuMofvVxg7izQ1w9P9Bb93TEmwF177p8:YPLXnDcPVxg+zxh93c7p8

Score

N/A

Malware Config

Signatures

Files

148b477743a4d21bfe1606129b8ba1ef0e580fac52991c4d160a47d541878fca
.exe windows x86

d71e51c1e40f2d7106ad8c8fe4043b9b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
FindExecutableA

user32

GetSysColor
GetClientRect
SetRect
EndPaint
LoadCursorA
GetLastActivePopup
ShowWindow
PostMessageA
SendMessageA
EnableWindow
SetWindowTextA
SetForegroundWindow
SetActiveWindow
SendDlgItemMessageA
UpdateWindow
OemToCharBuffA
CharUpperBuffA
SetTimer
BeginPaint
DialogBoxIndirectParamA
GetDlgItemTextA
EndDialog
GetWindowRect
GetSystemMetrics
SetWindowPos
GetKeyState
PeekMessageA
TranslateMessage
DispatchMessageA
GetParent
SetDlgItemTextA
GetDlgItem
InvalidateRect
wsprintfA
MessageBoxA
SetCursor
CharNextA
SetWindowWord
GetWindowWord
DefWindowProcA
RegisterClassA
KillTimer

kernel32

VirtualAlloc
HeapFree
VirtualQuery
InterlockedExchange
HeapAlloc
HeapReAlloc
RtlUnwind
GetCommandLineA
GetModuleHandleA
SetErrorMode
_lwrite
lstrcmpiA
GetVolumeInformationA
_lcreat
CreateFileA
CloseHandle
ExitProcess
GetSystemTime
WriteFile
GetModuleFileNameA
GetVersion
GlobalMemoryStatus
_lread
_llseek
GetWindowsDirectoryA
lstrcatA
FindClose
FindFirstFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateDirectoryA
SetFileTime
LocalFileTimeToFileTime
DosDateTimeToFileTime
LocalAlloc
_lopen
GetDriveTypeA
WinExec
lstrcpyA
lstrlenA
_lclose
GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
GlobalHandle
LocalFree
GetEnvironmentVariableA

gdi32

SetBkColor
SetTextColor
SetTextAlign
GetBkColor
GetTextExtentPoint32A
ExtTextOutA
CreateDCA
GetDeviceCaps
CreateFontIndirectA
DeleteDC
SelectObject
DeleteObject

advapi32

RegQueryValueA

comctl32

ord17

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d71e51c1e40f2d7106ad8c8fe4043b9b

Headers

File Characteristics

Imports

shell32

user32

kernel32

gdi32

advapi32

comctl32

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 5KB

.rsrc Size: 100KB - Virtual size: 100KB

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 5KB

.rsrc
Size: 100KB - Virtual size: 100KB