c64eae0afd014b50ba04e651228cb31235ff1b968efd0d24da039aa343b86b89

General

Target

c64eae0afd014b50ba04e651228cb31235ff1b968efd0d24da039aa343b86b89
Size

119KB
MD5

694ab122c4030b3d385cc0b932d3446a
SHA1

8ede303a6205f010367d1096f487d46474d774ee
SHA256

c64eae0afd014b50ba04e651228cb31235ff1b968efd0d24da039aa343b86b89
SHA512

2657d79b06567683202c5b23d6358a9cf7299f6adc8818a3753608a20a3ad6f952a03d5fa0caa39556603a3da2b8fcf5fc9e4d747d784b790832fe93a01e6454
SSDEEP

3072:oxERpAyFgMn5OlYEg1Qq6y3WyORCiprSYvKS7ONjY8AAtJjI:0iOyFF5ONkCyfipBiNnxtJj

Score

N/A

Malware Config

Signatures

Files

c64eae0afd014b50ba04e651228cb31235ff1b968efd0d24da039aa343b86b89
.exe windows x86

7de6aecb83808587b5dc62689e315af1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CompareStringA
ExitProcess
GetACP
GetCommandLineA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetStartupInfoA
GetSystemTime
HeapAlloc
RtlUnwind
SetEndOfFile
SetLastError
SetUnhandledExceptionFilter
TlsFree
UnmapViewOfFile
VirtualFree
lstrcatA
lstrcpyA

user32

ToAscii
ShowOwnedPopups
OemToCharBuffA
LoadAcceleratorsW
GetFocus
EndDeferWindowPos
EnableWindow
DestroyIcon
CharPrevA
GetWindowTextA

advapi32

LsaEnumerateTrustedDomains
LsaGetQuotasForAccount
LsaGetRemoteUserName
LsaLookupNames
LsaLookupPrivilegeDisplayName

msvbvm60

__vbaCyStr
__vbaCyInt
__vbaCyAbs
__vbaExitEachVar
__vbaAryConstruct2
__vbaExitEachColl
__vbaExitEachAry
__vbaEraseKeepData
__vbaDateVar
__vbaCyVar

dinput

DirectInputCreateA
DirectInputCreateEx
DirectInputCreateW

Exports

Exports

Ft
Hto
Tevkno

Sections

.text
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7de6aecb83808587b5dc62689e315af1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvbvm60

dinput

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 12KB

.rdata Size: 33KB - Virtual size: 36KB

.data Size: 69KB - Virtual size: 72KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 12KB

.rdata
Size: 33KB - Virtual size: 36KB

.data
Size: 69KB - Virtual size: 72KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 4KB