c0057f77ef65bb8cb6af8fbfaab8bc3792be446b7250b9fb7cb843618c94ecd6

Sharing

Copy URL

Twitter E-mail

General

Target

c0057f77ef65bb8cb6af8fbfaab8bc3792be446b7250b9fb7cb843618c94ecd6
Size

99KB
MD5

c6065683ac691c46ed6f2b2c99b5426a
SHA1

b71c177ceddf0be7b3a2acc3366a186e3c7ef294
SHA256

c0057f77ef65bb8cb6af8fbfaab8bc3792be446b7250b9fb7cb843618c94ecd6
SHA512

3c0e45656bc4121e27afd7a618fb5ec36c6c57e2a6b89ea3f5dfaa7490683262004a6e85501b989a6d830074e943b84c2341f6f32f624ac4ae9341e8e8fe0557
SSDEEP

3072:q2hzgKSXgsmyL9egmSKSmeI3uFZS6p051Fwn:q40Kogsmy5Vweo+051FW

Score

N/A

Malware Config

Signatures

Files

c0057f77ef65bb8cb6af8fbfaab8bc3792be446b7250b9fb7cb843618c94ecd6
.exe windows x86

11c691dc1dc8642a340363d4719a95be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpA
GetModuleHandleA
CloseHandle
WideCharToMultiByte
HeapAlloc
GetDateFormatA
GetFileType
GetFileAttributesA
lstrcatA
FreeLibrary
GlobalFree
lstrcmpiA
lstrcpyA
SetLastError
GetModuleFileNameA
GetStdHandle
GetCPInfo

user32

GetFocus
CopyImage
GetWindowTextLengthA
DialogBoxParamW
DrawTextA
GetDlgItem
CopyIcon
GetMenu
DialogBoxParamA
CopyRect
AppendMenuW
DrawIcon
GetWindowTextA
GetCursor
CreateIcon
DrawIconEx
BlockInput
GetWindowTextLengthA
GetMenu
CloseWindow
IsMenu
GetWindowTextA
GetFocus
GetCursor
AppendMenuA
IsWindow
LoadMenuA
LoadCursorA
DialogBoxParamW
DrawTextW
CopyImage
DrawIcon
DialogBoxParamA
InsertMenuA
CopyRect

comctl32

ImageList_GetIcon
ImageList_GetImageRect
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_Draw
ImageList_Replace
ImageList_GetIconSize
ImageList_DrawEx
ImageList_DrawIndirect
ImageList_GetImageCount
ImageList_LoadImage
ImageList_Create
ImageList_DragEnter
ImageList_DragMove
ImageList_ReplaceIcon
ImageList_Read
ImageList_Copy

advapi32

RegEnumKeyA
RegEnumValueW
RegQueryValueExA
RegDeleteValueW
RegQueryValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyW
RegReplaceKeyW
RegReplaceKeyA
RegDeleteKeyW
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyW
RegLoadKeyW
RegDeleteValueA

Sections

.FwplfE
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.yucjtR
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.poaF
Size: 512B - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.isfnpw
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crnKf
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11c691dc1dc8642a340363d4719a95be

Headers

File Characteristics

Imports

kernel32

user32

comctl32

advapi32

Sections

.FwplfE Size: 15KB - Virtual size: 14KB

.yucjtR Size: 28KB - Virtual size: 28KB

.poaF Size: 512B - Virtual size: 46KB

.isfnpw Size: 1024B - Virtual size: 1KB

.crnKf Size: 1024B - Virtual size: 2KB

.rsrc Size: 1024B - Virtual size: 4KB

.FwplfE
Size: 15KB - Virtual size: 14KB

.yucjtR
Size: 28KB - Virtual size: 28KB

.poaF
Size: 512B - Virtual size: 46KB

.isfnpw
Size: 1024B - Virtual size: 1KB

.crnKf
Size: 1024B - Virtual size: 2KB

.rsrc
Size: 1024B - Virtual size: 4KB