798db21cd34ebd8969495d48e5dd295b1ff02d0fe253ad8377cc9abcddca7a39

Sharing

Copy URL Twitter E-mail

General

Target

798db21cd34ebd8969495d48e5dd295b1ff02d0fe253ad8377cc9abcddca7a39
Size

288KB
MD5

9f29f95f1282f834778a752dffb98d37
SHA1

2c0bf187584bf11c7fe78c0067a13bc75e852b95
SHA256

798db21cd34ebd8969495d48e5dd295b1ff02d0fe253ad8377cc9abcddca7a39
SHA512

337a7e9d3635d1897428d713f8d9e0f06781e6e26a0da06523d2739dccbe035ba8b030e343ac3d4ce45498263d591d5cc7e03461d598aab2c15e5952555df5aa
SSDEEP

6144:m5+Zc+w9yKk+cWfYhck5RWYmu3lJiMhvBrFP8eALBnqFJGmRBc1:+yc+w9y8cj+WR17HlF2LtqF3BM

Score

N/A

Malware Config

Signatures

Files

798db21cd34ebd8969495d48e5dd295b1ff02d0fe253ad8377cc9abcddca7a39
.exe windows x86

c68f346985e6f4ebb91634ab956ce8b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgA
ReplaceTextA
GetOpenFileNameA
GetSaveFileNameW
PageSetupDlgA
PrintDlgW
FindTextW
ChooseFontW
GetFileTitleW
ReplaceTextW
GetSaveFileNameA

wininet

FtpFindFirstFileW

gdi32

SetStretchBltMode
SetArcDirection
CreateHatchBrush
SetPixel
GetTextFaceW
GetLogColorSpaceA
DrawEscape
CreateICA

user32

MessageBeep
GetMonitorInfoA
AnyPopup
RealGetWindowClass

kernel32

DeleteCriticalSection
IsBadWritePtr
TerminateProcess
GetStringTypeA
GetCPInfo
UnhandledExceptionFilter
DebugBreak
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetCurrentThreadId
GetFileType
UnlockFile
GetStdHandle
GetProcAddress
SetHandleCount
GetEnvironmentStringsW
InterlockedExchange
HeapValidate
TlsAlloc
TlsSetValue
LCMapStringA
GlobalGetAtomNameW
InitializeCriticalSectionAndSpinCount
MoveFileA
SetStdHandle
FreeEnvironmentStringsA
TlsFree
DebugActiveProcess
GetModuleFileNameA
GetCommandLineA
HeapCreate
IsValidLocale
GetStringTypeW
GetDriveTypeW
GetCurrentProcess
RtlUnwind
WideCharToMultiByte
GetStartupInfoA
LeaveCriticalSection
OutputDebugStringA
LoadLibraryExW
TlsGetValue
WriteFile
GetCurrentProcessId
FlushFileBuffers
GetLastError
LoadLibraryA
GetTickCount
HeapReAlloc
ExitProcess
MultiByteToWideChar
InterlockedIncrement
VirtualFree
CloseHandle
GetCurrentThread
GetACP
HeapFree
lstrcpyW
InitializeCriticalSection
SetConsoleCtrlHandler
GetEnvironmentStrings
VirtualAlloc
GetOEMCP
EnterCriticalSection
GetModuleHandleA
ReadConsoleInputW
VirtualQuery
InterlockedDecrement
HeapAlloc
SetFilePointer
IsBadReadPtr
SetLastError
FreeEnvironmentStringsW
GetVersion
LCMapStringW
HeapDestroy

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c68f346985e6f4ebb91634ab956ce8b9

Headers

File Characteristics

Imports

comdlg32

wininet

gdi32

user32

kernel32

Sections

.text Size: 144KB - Virtual size: 143KB

.data Size: 140KB - Virtual size: 139KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 144KB - Virtual size: 143KB

.data
Size: 140KB - Virtual size: 139KB

.rsrc
Size: 3KB - Virtual size: 3KB