eb5bc7ef7933010759f6d6651c8f7bf3e9afdffe926d77fc96990f9445f6baa1

Sharing

Copy URL

Twitter E-mail

General

Target

eb5bc7ef7933010759f6d6651c8f7bf3e9afdffe926d77fc96990f9445f6baa1
Size

326KB
MD5

95366442e1f66757391aec72885cc434
SHA1

9eab6b911f788715fd148bcebae7805d6f2dc819
SHA256

eb5bc7ef7933010759f6d6651c8f7bf3e9afdffe926d77fc96990f9445f6baa1
SHA512

81bcde0e6455d6870969e51051317f5e8aefc8a41ee3f91263e56abbf1345f2369414f1fb45c96a0ce79ba5502674254b5031a55ca1d6db0114f807ff56928b7
SSDEEP

3072:TQYGsgLSCqyzuBGJ0Dmt+5Jm7DSN//GD+yJWHRmOAcFJMSzBHpk9NOiUxA5mP9Jr:TQYALRqW+Lm3mXlyShFioA58tQY

Score

N/A

Malware Config

Signatures

Files

eb5bc7ef7933010759f6d6651c8f7bf3e9afdffe926d77fc96990f9445f6baa1
.exe windows x86

3b5128bc2e9529965d74b285872721d2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICOpen
DrawDibSetPalette
MCIWndCreateW
ICCompress
ICOpenFunction
ICInfo

avifil32

AVIBuildFilter
AVIStreamReadFormat
AVIStreamRelease
AVIFileRelease
AVIFileOpenW
AVIStreamOpenFromFile
AVIFileEndRecord
AVIMakeFileFromStreams
AVIMakeCompressedStream
AVIStreamGetFrameOpen

mscms

OpenColorProfileW
GetPS2ColorRenderingDictionary
AssociateColorProfileWithDeviceW
CloseColorProfile
SetColorProfileElement
TranslateColors
AssociateColorProfileWithDeviceA
SelectCMM
CreateMultiProfileTransform
RegisterCMMA
DisassociateColorProfileFromDeviceA
SpoolerCopyFileEvent
GetStandardColorSpaceProfileW
SetColorProfileElementSize
IsColorProfileTagPresent

comdlg32

PageSetupDlgA
PrintDlgExW
ChooseColorW
FindTextW
ReplaceTextW
ChooseColorA
ReplaceTextA
GetOpenFileNameA
PrintDlgExA
GetFileTitleA
PrintDlgA
CommDlgExtendedError

kernel32

GetCPInfo
Sleep
HeapFree
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
UnhandledExceptionFilter
LoadLibraryW
GetOEMCP
IsValidCodePage
RtlUnwind
WideCharToMultiByte
HeapSize
HeapAlloc
HeapReAlloc
IsProcessorFeaturePresent
LCMapStringW
MultiByteToWideChar
GetStringTypeW
GetACP
DecodePointer
GetCommandLineW
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b5128bc2e9529965d74b285872721d2

Headers

DLL Characteristics

File Characteristics

Imports

msvfw32

avifil32

mscms

comdlg32

kernel32

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 32KB - Virtual size: 35KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 32KB - Virtual size: 35KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 9KB - Virtual size: 8KB