04a96da065c6fb7fba4ed79d64ca03b3c7281dbdf5afd31532424d01c0dd8bad

Sharing

Copy URL Twitter E-mail

General

Target

04a96da065c6fb7fba4ed79d64ca03b3c7281dbdf5afd31532424d01c0dd8bad
Size

48KB
MD5

dd0e9a509960c027f50244a854a16538
SHA1

58aafe233b4c3536258a3128576e66ebccf468af
SHA256

04a96da065c6fb7fba4ed79d64ca03b3c7281dbdf5afd31532424d01c0dd8bad
SHA512

fb4df7c6f197be8f1a7dec5896c465797f32b0b0402b169e75dbb3233ca6f05bd30c1716d848aef3791dbf1a5102724b712a453216c79092e984b9a93d6a4cb1
SSDEEP

768:B/zszKteeQ+N9/bocDK5s6y0mqu52apdpN0J1f4L1Nx4RP2Zl2blutJRczaVAWjq:WzK9vbHr6Li51WJZ4RNm0CI7RczaVAIt

Score

1^/10

Malware Config

Signatures

Files

04a96da065c6fb7fba4ed79d64ca03b3c7281dbdf5afd31532424d01c0dd8bad
.exe windows x86

a00961edb49a0f390499b4f1f1133ee5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
GetLastError
CreateEventW
WaitForSingleObject
SetEvent
SetLastError
FindFirstFileW
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleHandleW
ExitProcess
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTickCount
CreateThread
GetFileAttributesExW
GetFileSize
SetFilePointer
WriteFile
ReadFile
CloseHandle
CreateFileW
lstrcatW
lstrcpyW
lstrlenW
lstrlenA
GlobalFree
MultiByteToWideChar

user32

RegisterClassExW
LoadCursorW
GetMessageW
CallWindowProcW
DrawTextW
GetSystemMetrics
LoadStringW
CharUpperW
CharLowerW
GetSystemMenu
ShowWindow
MessageBoxW
wsprintfW
EnableWindow
CreateWindowExW
SendMessageW
PostQuitMessage
LoadIconW
GetSysColorBrush
PostMessageW
DefWindowProcW
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetWindowPos
EnableMenuItem
PeekMessageW
DispatchMessageW
TranslateMessage
GetWindowTextW
SetWindowTextW
GetClientRect
GetWindowLongW
GetDC
SetWindowLongW

gdi32

SetBkMode
SetTextColor
SelectObject
GetDeviceCaps
GetStockObject

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

CryptDestroyHash
CryptAcquireContextW
CryptCreateHash
CryptHashData
CryptGetHashParam
CryptReleaseContext

shell32

DragFinish
DragAcceptFiles
DragQueryFileW

shlwapi

StrChrW
SHSetValueW
SHGetValueW
StrRChrW
StrToIntExW
StrCmpIW

msvcrt

__dllonexit
??1type_info@@UAE@XZ
_gcvt
??3@YAXPAX@Z
memcpy
memset
free
malloc
_onexit

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

comctl32

ImageList_Destroy
ord17

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a00961edb49a0f390499b4f1f1133ee5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

msvcrt

version

comctl32

Sections

.text Size: 37KB - Virtual size: 37KB

.data Size: 512B - Virtual size: 11KB

.CRT Size: 512B - Virtual size: 4B

.rsrc Size: 8KB - Virtual size: 84KB

.text
Size: 37KB - Virtual size: 37KB

.data
Size: 512B - Virtual size: 11KB

.CRT
Size: 512B - Virtual size: 4B

.rsrc
Size: 8KB - Virtual size: 84KB