f6d98610f68a34a8fcca502816591d9d441a2e7924c1f6ec7e2b1c511e1e1784

Sharing

Copy URL Twitter E-mail

General

Target

f6d98610f68a34a8fcca502816591d9d441a2e7924c1f6ec7e2b1c511e1e1784
Size

116KB
MD5

b377bf8ec694661e46ceceb24c45436c
SHA1

6ab64eed5325262259ef3251785ac46ab4d52d89
SHA256

f6d98610f68a34a8fcca502816591d9d441a2e7924c1f6ec7e2b1c511e1e1784
SHA512

5947c288b15b9a73027478ea861463e1f31afe4d0efd6707ea48eb0df7dbf0e48e228e396bafe7a80924556627e313675765f37e31cdf9e344c97a3c7f582612
SSDEEP

3072:+I6P87fir7YsWJN0fwBcLVk7cdd+yj/WMXJBF:+I6P87wxa0acnddJL9

Score

N/A

Malware Config

Signatures

Files

f6d98610f68a34a8fcca502816591d9d441a2e7924c1f6ec7e2b1c511e1e1784
.exe windows x86

93d1262dab5f8874786d9d30a319020d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteW
SHGetSpecialFolderPathW
SHBrowseForFolderW
SHGetPathFromIDListW

ole32

CoCreateInstance
CoUninitialize
CoInitialize

oleacc

CreateStdAccessibleObject

gdi32

GetObjectW
GetDeviceCaps
CreateFontIndirectW
CreateSolidBrush
SetBkColor
DeleteObject
SetBkMode

kernel32

GetProcessHeap
SetLastError
GetModuleFileNameA
HeapFree
UnhandledExceptionFilter
ExitProcess
GetModuleHandleA
CancelWaitableTimer
GetStdHandle
FreeEnvironmentStringsA
GetFileAttributesW
OpenProcess
IsValidCodePage
HeapDestroy
HeapCreate
InterlockedIncrement
TlsAlloc
GetStartupInfoA
SetUnhandledExceptionFilter
GetCurrentProcess
ExitProcess
DeleteCriticalSection
ReadFile
GetOEMCP
TlsGetValue
TlsFree
GetCommandLineA
GetTickCount
GetFileType
QueryPerformanceCounter
HeapAlloc
GetEnvironmentStrings
GetCPInfo
FlushFileBuffers
TlsSetValue
RaiseException
FreeEnvironmentStringsW
IsDebuggerPresent
GetCurrentThreadId
GetVersionExA
RtlUnwind
LoadLibraryW
GetEnvironmentStringsW
TerminateProcess
SetHandleCount
GetACP
VirtualFree
WideCharToMultiByte

user32

EndPaint
LoadBitmapW
LoadIconW
GetWindowDC
PostMessageW
SetWindowLongW
GetDlgItem
GetParent
SetWindowPos
SetDlgItemTextW
BeginPaint
GetWindowLongW
ReleaseDC
LoadStringW
MessageBoxW
DestroyWindow
SendMessageW
DefWindowProcW

crypt32

CryptDecodeObject
CertGetNameStringW
CryptMsgClose
CryptQueryObject
CertEnumSystemStoreLocation
CertFreeCertificateContext
CryptMsgGetParam
CertFindCertificateInStore
CertCloseStore

Sections

.text
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93d1262dab5f8874786d9d30a319020d

Headers

File Characteristics

Imports

shell32

ole32

oleacc

gdi32

kernel32

user32

crypt32

Sections

.text Size: 93KB - Virtual size: 93KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 18KB - Virtual size: 17KB

.rsrc Size: 1024B - Virtual size: 68KB

.text
Size: 93KB - Virtual size: 93KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 18KB - Virtual size: 17KB

.rsrc
Size: 1024B - Virtual size: 68KB