3c28e0ea1590a299b036aa07fa7175a252bf506cc69843021747c906dad1b6bc

General

Target

3c28e0ea1590a299b036aa07fa7175a252bf506cc69843021747c906dad1b6bc
Size

476KB
MD5

e0b6bbd9bc80c81573743aba3a1494ba
SHA1

4987e7b22170e272232b5ad4935212da4b24f009
SHA256

3c28e0ea1590a299b036aa07fa7175a252bf506cc69843021747c906dad1b6bc
SHA512

cbacf11bc04099ccbb9c540b4145568ebda3d49b7f053d90f993bf9e29f07950942f032d7bd092adaabebabe6be89a19fe890005957f06fa34c7adc9a4f42715
SSDEEP

12288:pzf3B2gRyEsyG8kx1P1fHaKWjZXJwuxHqoKu:5B2g3sqkD1fHaKWjZucv

Score

N/A

Malware Config

Signatures

Files

3c28e0ea1590a299b036aa07fa7175a252bf506cc69843021747c906dad1b6bc
.exe windows x86

04db1e6ce3faf3176a7e60a381423311

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GetFileSize
CreateFileA
WriteFile
MapViewOfFile
CreateFileMappingW
GetProcAddress
LoadLibraryW
GetStringTypeA
LCMapStringW
LCMapStringA
SetStdHandle
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
GlobalFree
SetUnhandledExceptionFilter
FlushFileBuffers
SetFilePointer
GetLastError
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
HeapSize
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
IsBadReadPtr
CloseHandle
HeapDestroy
GetCurrentProcess
GetStringTypeW
MultiByteToWideChar
HeapAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
RaiseException
HeapFree
TerminateProcess

user32

DestroyWindow
GetWindowTextA
GetDlgItem
EnableMenuItem
DrawMenuBar
SetFocus
SendDlgItemMessageA
DefMDIChildProcA
GetMenu
GetSubMenu
SendMessageA
PostMessageA
DefFrameProcA
GetClientRect
GetWindowRect
MoveWindow
GetWindowTextLengthA
PostQuitMessage
LoadIconA
LoadCursorA
RegisterClassExA
MessageBoxA
CreateWindowExA
ShowWindow
UpdateWindow
GetMessageA
TranslateMDISysAccel
TranslateMessage
DispatchMessageA
SetWindowTextA

gdi32

GetStockObject

comdlg32

GetOpenFileNameA
GetSaveFileNameA

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 236KB - Virtual size: 238KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04db1e6ce3faf3176a7e60a381423311

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 236KB - Virtual size: 238KB

.rsrc Size: 180KB - Virtual size: 178KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 236KB - Virtual size: 238KB

.rsrc
Size: 180KB - Virtual size: 178KB