7157fab91a1fdeaef391366b1de476fef3a48dc5dea46b3c72dc73fb7921e142

Sharing

Copy URL

Twitter E-mail

General

Target

7157fab91a1fdeaef391366b1de476fef3a48dc5dea46b3c72dc73fb7921e142
Size

204KB
MD5

380086f242c6e178deaac7815ae42f0c
SHA1

2195d3a2726c1383b722ff8ac237587beeb83a8e
SHA256

7157fab91a1fdeaef391366b1de476fef3a48dc5dea46b3c72dc73fb7921e142
SHA512

f024b417aeeeb39a4ede0fc95f1b854027ca0f420551b6f2a7e26a886c28298a4b7783a3fd52cda862ae10b5f19ad5fedffd7ed54edf87843855e5c84b81e0b9
SSDEEP

6144:7rvWnxdAxJ7ZmkCPBXCUNwOf2KvU3M2zCC7:WxdW7Z1CPgOf2J3MQX

Score

N/A

Malware Config

Signatures

Files

7157fab91a1fdeaef391366b1de476fef3a48dc5dea46b3c72dc73fb7921e142
.exe windows x86

65d1012011531bd47c72604bb28868de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CancelDC
CreateDIBPatternBrush

comdlg32

GetFileTitleW
GetSaveFileNameW
ReplaceTextW
ChooseFontW
ReplaceTextA
GetFileTitleA
ChooseColorA
PageSetupDlgW
PrintDlgA
GetOpenFileNameW
LoadAlterBitmap
PageSetupDlgA
FindTextA
PrintDlgW
ChooseColorW
GetSaveFileNameA

shell32

SHGetFileInfo
SHGetDesktopFolder
SHGetPathFromIDListW
ExtractAssociatedIconA
SHEmptyRecycleBinW
SHEmptyRecycleBinA
ShellExecuteEx
SHGetDataFromIDListW
ShellAboutW
ExtractIconEx

wininet

ShowX509EncodedCertificate
FtpGetCurrentDirectoryW
InternetWriteFileExA
InternetAutodial
InternetGetConnectedState
DeleteUrlCacheContainerW
InternetCheckConnectionA
FindFirstUrlCacheEntryExW
FtpRemoveDirectoryA
InternetQueryDataAvailable
InternetTimeToSystemTimeA

kernel32

GetVersion
GetCurrentThreadId
GetCommandLineW
GetFileType
IsBadWritePtr
VirtualQuery
HeapAlloc
GetModuleFileNameW
TlsAlloc
ExitProcess
SetHandleCount
RtlUnwind
TerminateProcess
SetThreadContext
UnhandledExceptionFilter
GlobalGetAtomNameW
InitializeCriticalSection
CreateWaitableTimerW
HeapReAlloc
GetCurrentProcess
RtlZeroMemory
EnterCriticalSection
LoadLibraryA
GetStartupInfoA
HeapCreate
GetDiskFreeSpaceExW
GetEnvironmentStrings
HeapDestroy
WriteFile
QueryPerformanceCounter
HeapFree
LeaveCriticalSection
GetCurrentProcessId
GetLastError
CreateFileW
TlsFree
MultiByteToWideChar
GetModuleHandleA
GetProcAddress
GetModuleFileNameA
GetCurrencyFormatA
InterlockedExchange
TlsSetValue
VirtualAlloc
SetLastError
FormatMessageW
GetCurrentThread
GetSystemTimeAsFileTime
ResetEvent
GetStartupInfoW
GetTickCount
GetCommandLineA
FreeEnvironmentStringsW
ContinueDebugEvent
VirtualFree
TlsGetValue
GetPrivateProfileSectionNamesW
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetStdHandle
DeleteCriticalSection

advapi32

LookupPrivilegeValueA
RegOpenKeyW
CryptGetDefaultProviderA
LogonUserW

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65d1012011531bd47c72604bb28868de

Headers

File Characteristics

Imports

gdi32

comdlg32

shell32

wininet

kernel32

advapi32

Sections

.text Size: 87KB - Virtual size: 86KB

.data Size: 104KB - Virtual size: 133KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 87KB - Virtual size: 86KB

.data
Size: 104KB - Virtual size: 133KB

.rsrc
Size: 11KB - Virtual size: 11KB