c964b5080d86aa1412ee5938c0c147dc5e80951e09748e0172b6a0cec4c504ee

Sharing

Copy URL Twitter E-mail

General

Target

c964b5080d86aa1412ee5938c0c147dc5e80951e09748e0172b6a0cec4c504ee
Size

198KB
MD5

350a1b2257e9acd7d51b25259e272268
SHA1

afc191034b25cc5488e1bb830066e37548b1e360
SHA256

c964b5080d86aa1412ee5938c0c147dc5e80951e09748e0172b6a0cec4c504ee
SHA512

eb0a702014bf3eca13744ae8dbc312520883c0b6347f2282ce5d4eda0a56f4b65e7e3a04083be46a251b79040b1a91c8dccddcc7339501f142c46c1d97e0d089
SSDEEP

3072:EJn+ss3/7FvEu6nBaea0HgOQd/lHx8qjOveWhOZi2Ev7NiDNJ+FeaqrIQoy:D3OnBba0Ydf7OeX/QE0F

Score

N/A

Malware Config

Signatures

Files

c964b5080d86aa1412ee5938c0c147dc5e80951e09748e0172b6a0cec4c504ee
.exe windows x86

c338c7832eb9ae26f6ff1d43c186061a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PeekMessageA
IsWindowVisible
GetSysColor
DestroyIcon
SetWindowLongA
ShowOwnedPopups
DispatchMessageA
IsDialogMessageA

shlwapi

PathIsContentTypeA
SHGetValueA
SHDeleteKeyA
SHQueryValueExA
SHStrDupA
SHQueryInfoKeyA
SHEnumValueA
SHSetValueA
PathFileExistsA
PathGetCharTypeA

ole32

CoGetObjectContext
StringFromIID
CoCreateInstanceEx
StgOpenStorage
CoCreateGuid
CoRevokeClassObject
CreateOleAdviseHolder
StgCreateDocfileOnILockBytes
OleRun
CreateBindCtx
CreateStreamOnHGlobal
OleRun
CreateBindCtx
CLSIDFromString
CoCreateInstanceEx
CoGetMalloc

oleaut32

VariantCopyInd
SysAllocStringLen
SysReAllocStringLen
SafeArrayGetElement
VariantCopyInd
SafeArrayCreate

kernel32

lstrlenA
GetLastError
ExitProcess
GetCommandLineA
IsBadHugeReadPtr
GetProcAddress
GetVersionExA
ExitThread
LoadLibraryExA
VirtualAllocEx
GetModuleHandleA
VirtualAlloc
IsBadReadPtr

shell32

SHFileOperationA
SHGetFolderPathA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

advapi32

RegOpenKeyExA
RegEnumKeyA
RegLoadKeyA
RegCreateKeyA
RegLoadKeyA
RegDeleteValueA

comctl32

ImageList_Draw
ImageList_Create
ImageList_Remove
ImageList_Write
ImageList_DragShowNolock
ImageList_Read
ImageList_Add
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Destroy
ImageList_GetBkColor
ImageList_Add
ImageList_Draw
ImageList_Write
ImageList_DrawEx
ImageList_Read
ImageList_DragShowNolock
ImageList_Create
ImageList_Remove
ImageList_Destroy

msvcrt

pow
asin
memset
calloc
sin
time
clock
atan
wcschr

gdi32

SaveDC
GetObjectA
CopyEnhMetaFileA
GetPixel
CreateBrushIndirect
CreatePenIndirect
CreateCompatibleDC

comdlg32

ChooseColorA
GetSaveFileNameA
GetFileTitleA
FindTextA

Sections

CODE
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1010B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA2
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA8
Size: 116KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.DATA5
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.DATA1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c338c7832eb9ae26f6ff1d43c186061a

Headers

File Characteristics

Imports

user32

shlwapi

ole32

oleaut32

kernel32

shell32

version

advapi32

comctl32

msvcrt

gdi32

comdlg32

Sections

CODE Size: 56KB - Virtual size: 56KB

.data Size: 1024B - Virtual size: 1010B

.DATA2 Size: 2KB - Virtual size: 1KB

.DATA8 Size: 116KB - Virtual size: 183KB

.DATA5 Size: 15KB - Virtual size: 15KB

.DATA1 Size: 4KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 1KB

CODE
Size: 56KB - Virtual size: 56KB

.data
Size: 1024B - Virtual size: 1010B

.DATA2
Size: 2KB - Virtual size: 1KB

.DATA8
Size: 116KB - Virtual size: 183KB

.DATA5
Size: 15KB - Virtual size: 15KB

.DATA1
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 1KB