8675514e7d1fe74b0a5eb317e45f59f07c0237e8b672ff9e8507abd7ac968f1f

Sharing

Copy URL Twitter E-mail

General

Target

8675514e7d1fe74b0a5eb317e45f59f07c0237e8b672ff9e8507abd7ac968f1f
Size

308KB
MD5

030cf6200b3949fb4ccc52c0f9f83f00
SHA1

bcbc4010ada7d821f741f191b76c1292fc2dc4df
SHA256

8675514e7d1fe74b0a5eb317e45f59f07c0237e8b672ff9e8507abd7ac968f1f
SHA512

806443204faed0673e7543ff2f24c345905a85a86da32a86f2a12e0d39f1fd7a4b805b6ba019564feee8a36d44c5fe0951a7ca32299b8a9f3b2facfe56e101d9
SSDEEP

6144:J9IkqnQTN0bbvQELZ2O0uHiOEt42pJ2FWUL5VSnmTp/KpP0s:skxNSFJ0uHiOSZ2FjtTdKpP0s

Score

N/A

Malware Config

Signatures

Files

8675514e7d1fe74b0a5eb317e45f59f07c0237e8b672ff9e8507abd7ac968f1f
.exe windows x86

1cab843137ec1426030f61f780e8f0a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
VirtualProtect
GetSystemDefaultLCID
PeekConsoleInputA
SetStdHandle
OpenMutexA
SetConsoleCtrlHandler
MapViewOfFileEx
GetPrivateProfileStructA
GetModuleHandleA
GetVersionExA
CreateDirectoryExA
GlobalCompact
GetTimeZoneInformation
lstrcpynA
GetCurrentThread
PeekNamedPipe
GetLocaleInfoA
CreateRemoteThread
GetStartupInfoA

user32

SetMenuItemInfoW
CreateIconFromResource
CloseWindowStation
GetDlgItemInt
RegisterClipboardFormatW
MessageBoxIndirectW
GetWindowTextW
ShowCaret
CreateWindowStationW
DeleteMenu
PostThreadMessageW
GetAncestor
GetMessageW

gdi32

GetObjectType
GetTextExtentExPointA
SetTextJustification
GetCharWidth32W
GetBkMode
GetCharacterPlacementW
RectInRegion
EnumFontFamiliesExW
GetEnhMetaFilePaletteEntries
CreateEllipticRgnIndirect
FillRgn
CloseFigure
GetGlyphOutlineW

comdlg32

GetFileTitleW
FindTextW
GetOpenFileNameW

advapi32

AccessCheckAndAuditAlarmW
GetUserNameA
DuplicateToken
RegCreateKeyW
SetKernelObjectSecurity
RegGetKeySecurity
RegSaveKeyA
RegQueryValueA
CryptHashData
CryptGenKey
OpenEventLogW
RegUnLoadKeyA
IsTextUnicode
CreateServiceW
SetSecurityDescriptorDacl
CryptExportKey

shell32

SHGetPathFromIDListW

ole32

CoInitialize
PropVariantCopy
CoFreeUnusedLibraries
SetConvertStg
CoSwitchCallContext
OleCreateLinkToFile

oleaut32

SafeArrayGetLBound
LoadTypeLibEx
SafeArrayPutElement
SysReAllocStringLen

comctl32

ImageList_GetDragImage
CreatePropertySheetPageW
ImageList_GetIcon

shlwapi

PathIsRootW
PathUnquoteSpacesA
StrCatBuffW
StrTrimA
PathFileExistsA
PathFindNextComponentW
StrChrIA
SHEnumValueW
PathStripPathA

setupapi

SetupGetIntField
SetupDiCreateDeviceInfoList
SetupScanFileQueueA
SetupDiCallClassInstaller
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_exit
_XcptFilter
_acmdln
exit

Sections

.text
Size: 296KB - Virtual size: 293KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 940B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1cab843137ec1426030f61f780e8f0a1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

setupapi

msvcrt

Sections

.text Size: 296KB - Virtual size: 293KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 940B

.text
Size: 296KB - Virtual size: 293KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 940B