uninstall3[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

uninstall3.exe
Size

34KB
MD5

9173864430a6e42403e7b52ad68d6a02
SHA1

20913aeadbf7661a6290f1b4f7344b4425daf00c
SHA256

3a5e38877b03288354953ac05df1826cdd8076c237d3e71173c6a5591d251292
SHA512

61c851eee037d7a4f178c2a215993f67b4072e2802d85d1cb69c141e644577b7d498e4af786143316a25241d5b2aa2b3b33f646325eafde951407f889c2e84b9
SSDEEP

768:IlN8FaWrnMCaN5luYlzU3YiZpPICQUWLkN9A0pNOUcGXCr4XYnRB:IT8F/YlVpUZTWLSTcGzYRB

Score

N/A

Malware Config

Signatures

Files

uninstall3.exe
.exe windows x86

bcb5eac0a8e1dfe8972292f2efe77cf6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
WriteFile
ExitProcess
CopyFileA
SetFilePointer
GetModuleHandleA
GetTickCount
GetDiskFreeSpaceA
GetCommandLineA
GetFileSize
GetModuleFileNameA
MapViewOfFile
RemoveDirectoryA
ReadFile
GetShortPathNameA
CreateDirectoryA
GetSystemDirectoryA
MultiByteToWideChar
GetProcAddress
FreeLibrary
DeleteFileA
WritePrivateProfileStringA
FindFirstFileA
FindNextFileA
FindClose
GetPrivateProfileStringA
Sleep
GlobalAlloc
MoveFileA
SetFileAttributesA
GetFileAttributesA
CreateFileA
GetFileTime
CloseHandle
CompareFileTime
GlobalFree
WaitForSingleObject
SetFileTime
CreateProcessA
CreateFileMappingA
LoadLibraryA
GetWindowsDirectoryA
CreateThread
SetEndOfFile
UnmapViewOfFile

user32

GetWindowRect
GetDlgItem
ScreenToClient
SetClassLongA
GetParent
GetDlgItemTextA
SendDlgItemMessageA
LoadBitmapA
IsWindowVisible
IsWindowEnabled
DialogBoxParamA
SetTimer
SetWindowTextA
SetDlgItemTextA
CreateDialogParamA
DestroyWindow
SetFocus
SetWindowPos
MessageBoxA
wsprintfA
UpdateWindow
PeekMessageA
FindWindowA
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
GetWindowTextA
DrawTextA
EndPaint
LoadIconA
LoadCursorA
RegisterClassA
SystemParametersInfoA
GetDesktopWindow
CreateWindowExA
EnableWindow
ShowWindow
EndDialog
SetForegroundWindow
DispatchMessageA
InvalidateRect

gdi32

DeleteObject
CreatePen
SelectObject
MoveToEx
CreateCompatibleDC
TextOutA
BitBlt
GetTextMetricsA
GetStockObject
SetBkMode
SetBkColor
GetNearestColor
CreateBrushIndirect
CreateFontA
LineTo
SetTextColor

advapi32

RegOpenKeyA
RegSetValueExA
RegCreateKeyA
RegDeleteKeyA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA

shell32

SHBrowseForFolderA
SHGetMalloc
ShellExecuteA
SHGetPathFromIDListA
SHFileOperationA

ole32

OleInitialize
CoCreateInstance
OleUninitialize

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bcb5eac0a8e1dfe8972292f2efe77cf6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 23KB - Virtual size: 23KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 33KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 23KB - Virtual size: 23KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 33KB

.rsrc
Size: 3KB - Virtual size: 3KB