d12f321b587e377cf6a38ff7b4609dad37dde766100b9adcfa8ea06779e0b1bc

Sharing

Copy URL Twitter E-mail

General

Target

d12f321b587e377cf6a38ff7b4609dad37dde766100b9adcfa8ea06779e0b1bc
Size

218KB
MD5

2d24084af64cfa2aa34f63d20153e6d0
SHA1

cba766b3268f71f068ff22fa6fc373f81fd0c571
SHA256

d12f321b587e377cf6a38ff7b4609dad37dde766100b9adcfa8ea06779e0b1bc
SHA512

c7d61a5daf149ca2a7ed05dfa8f80d66addff0b6d93ee7f8adeb281f1769003dc234e9713c77a1c2def4e6fb5975f20791b72702bb9673fb08bfe1742b2db41c
SSDEEP

6144:1rvJ9GwQC6x07kuuyuw2vZRB7nwKx11BLdzi:1jJoWw07kb+2PtnwSJd

Score

N/A

Malware Config

Signatures

Files

d12f321b587e377cf6a38ff7b4609dad37dde766100b9adcfa8ea06779e0b1bc
.exe windows x86

5bdb030576ccc78f39be79578f7c1156

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocStringLen
SysReAllocStringLen

user32

AdjustWindowRectEx
DrawEdge
CharLowerA
CreateMenu
DrawIcon
ChildWindowFromPoint
CharNextW
CloseClipboard
CallNextHookEx
DefWindowProcA
DispatchMessageW
CharUpperBuffA
CreateIcon
DefFrameProcA
DrawFrameControl
DestroyMenu
DefMDIChildProcA
CharLowerBuffA
DestroyCursor
CreatePopupMenu
CheckMenuItem
DispatchMessageA
DestroyWindow
CallWindowProcA
CharToOemA
DeleteMenu
BeginPaint
CharNextA
ClientToScreen

kernel32

IsBadReadPtr
LocalAlloc
DeleteCriticalSection
FormatMessageA
FindResourceA
GetFullPathNameA
DeleteFileA
GetCurrentThreadId
ExitProcess
GetCommandLineA
CreateThread
CloseHandle
GetVersionExA
FreeLibrary
GetProcAddress
GetCPInfo
FindFirstFileA
CreateFileA
GetCurrentProcessId
VirtualAlloc
GetFileType
GetEnvironmentStrings
EnterCriticalSection
CreateEventA
GetDateFormatA
GetDiskFreeSpaceA
LoadLibraryA
FindClose
Sleep
GetFileSize
EnumCalendarInfoA
FreeResource
ExitThread
CompareStringA
GetModuleHandleA
VirtualAllocEx
GetACP
GetFileAttributesA
LoadLibraryExA
GetLastError

shell32

DragQueryFileA
SHFileOperationA
SHGetFolderPathA

version

VerQueryValueA
GetFileVersionInfoSizeA

advapi32

RegLoadKeyA
RegCreateKeyA
RegQueryValueExA

gdi32

GetPaletteEntries
GetRgnBox
GetObjectA
GetPixel
LineTo

comdlg32

ChooseColorA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

ole32

CoReleaseMarshalData
PropVariantClear
CreateStreamOnHGlobal

shlwapi

SHEnumValueA
PathIsDirectoryA
SHDeleteValueA
PathIsContentTypeA
SHGetValueA
SHQueryValueExA
PathFileExistsA
SHQueryInfoKeyA

comctl32

ImageList_GetBkColor
ImageList_Create
ImageList_Draw
ImageList_DrawEx

Sections

CODE
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 699B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc0
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc7
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5bdb030576ccc78f39be79578f7c1156

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

shell32

version

advapi32

gdi32

comdlg32

ole32

shlwapi

comctl32

Sections

CODE Size: 70KB - Virtual size: 70KB

.data Size: 1024B - Virtual size: 699B

.rsrc2 Size: 2KB - Virtual size: 1KB

.rsrc9 Size: 2KB - Virtual size: 1KB

.rsrc4 Size: 134KB - Virtual size: 134KB

.rsrc0 Size: 1KB - Virtual size: 1KB

.rsrc7 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 976B

CODE
Size: 70KB - Virtual size: 70KB

.data
Size: 1024B - Virtual size: 699B

.rsrc2
Size: 2KB - Virtual size: 1KB

.rsrc9
Size: 2KB - Virtual size: 1KB

.rsrc4
Size: 134KB - Virtual size: 134KB

.rsrc0
Size: 1KB - Virtual size: 1KB

.rsrc7
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 976B