73ee385a5f1557f6dd9bce9501e6ba4051b295b6c9f0145b6a463197398aa6b0

Sharing

Copy URL

Twitter E-mail

General

Target

73ee385a5f1557f6dd9bce9501e6ba4051b295b6c9f0145b6a463197398aa6b0
Size

45KB
MD5

ef241f4bcfd072a05f40c8bdf398ce20
SHA1

b543f08b3a5b4149460b15c4a92bf81bb60d7d74
SHA256

73ee385a5f1557f6dd9bce9501e6ba4051b295b6c9f0145b6a463197398aa6b0
SHA512

c34753d734e1d9a3dde084ddbb5df58be029e396794126ed6b60e99222b7cd0d54e47e204f24e3d4be0500a2c9bc155615412264f9f872b13757796da9b4bba4
SSDEEP

768:VwVu1uR2AIMru4uP4l86Yc/Q04mYgj4jQ5kHdDnUtKgUbqKp1tnuXFKN:VI9R2AIMru4uPyj2jYk9D9gUlFkKN

Score

N/A

Malware Config

Signatures

Files

73ee385a5f1557f6dd9bce9501e6ba4051b295b6c9f0145b6a463197398aa6b0
.exe windows x86

638a10604668f4e1164699e9b461815a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualProtect
FlushInstructionCache
UpdateResourceA
GetProcessAffinityMask
LocalFlags
WritePrivateProfileStringA
GetShortPathNameA
FindAtomW
MoveFileExW
CreateRemoteThread
RegisterWaitForSingleObject
GetBinaryTypeW
CreateMailslotW
QueryPerformanceFrequency
SignalObjectAndWait
GetTimeZoneInformation
DuplicateConsoleHandle
SetEndOfFile
GlobalAlloc
GetNumberOfConsoleInputEvents
HeapWalk
CreateConsoleScreenBuffer
SetLastError
SetConsoleOutputCP
AreFileApisANSI
InitAtomTable
ReleaseSemaphore

user32

DestroyMenu
IsWindow
GetGUIThreadInfo
CallMsgFilterA
GetDialogBaseUnits
LoadIconA
GetTabbedTextExtentW
LoadImageA
HiliteMenuItem
GetCursorPos
GetClassInfoExA
CloseWindow
MessageBoxExA
GetOpenClipboardWindow
GetTitleBarInfo
LoadKeyboardLayoutEx
DrawIconEx
CreateMDIWindowW
DrawCaptionTempA
UserRealizePalette
MessageBoxExW
RemovePropA
GetDoubleClickTime
SetWindowsHookW
GetAltTabInfo
GetClassWord
GetKeyNameTextA
ReplyMessage
SetUserObjectInformationW
InternalGetWindowText

gdi32

SetDCPenColor
StartFormPage
ScaleWindowExtEx
GetEnhMetaFileHeader
GetPolyFillMode
GetDeviceCaps
DPtoLP
GetRasterizerCaps
GetEnhMetaFileBits
EngFindResource
EngDeletePalette
EngAssociateSurface
CreateColorSpaceA
GdiEntry2
GetLogColorSpaceW
PATHOBJ_vEnumStart
EndDoc
GetDCPenColor
Chord
GetCurrentPositionEx
EngLineTo
EudcLoadLinkW
GetICMProfileW
RemoveFontResourceExW
SetPixelFormat

comdlg32

dwLBSubclass
GetOpenFileNameW
ChooseFontA
PrintDlgA
PageSetupDlgA
ChooseColorA
GetSaveFileNameW
CommDlgExtendedError
Ssync_ANSI_UNICODE_Struct_For_WOW
ReplaceTextA
PrintDlgExW

Sections

.text
Size: 4KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

638a10604668f4e1164699e9b461815a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 40KB

.data Size: 37KB - Virtual size: 40KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 40KB

.data
Size: 37KB - Virtual size: 40KB

.idata
Size: 3KB - Virtual size: 4KB