881e7541b8ecdb562e7d06c59332703c9e07fe94ada66f6d6945221cd072e7f7

Sharing

Copy URL Twitter E-mail

General

Target

881e7541b8ecdb562e7d06c59332703c9e07fe94ada66f6d6945221cd072e7f7
Size

45KB
MD5

6d607ec6d818a6f5e0209a832c175dda
SHA1

0c2dd918c389cb15a6bf9d466a2a4096cb6cfd82
SHA256

881e7541b8ecdb562e7d06c59332703c9e07fe94ada66f6d6945221cd072e7f7
SHA512

5168d3566dfa2a84f41c4266a7c05e400e5ecf68d40ba9e09c22515e11e4588477d987ca6ce0c39b2bd9207ec2ad00362c33e82fe44d4cc5da8c666e4334013c
SSDEEP

768:tJ0PjMzhj1iC21aj7S6aW6JZIYElMUnXqB/0Q1w/2nIiYvZRbny:tJ007m1afrYo7M26B/0D/8Ivbny

Score

N/A

Malware Config

Signatures

Files

881e7541b8ecdb562e7d06c59332703c9e07fe94ada66f6d6945221cd072e7f7
.exe windows x86

bbd8ea805c3595700e4f91dcbfb5d03c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ExtTextOutW
GetStockObject
SetWindowOrgEx
SetBkColor
SetTextAlign
CreateFontIndirectW
MoveToEx
RealizePalette
DeleteDC
SetMetaRgn
SetViewportOrgEx
DeleteMetaFile
GetTextMetricsW
SaveDC
CreatePen
CreateBitmap
GetObjectA

msvcrt

_adjust_fdiv
_vsnprintf
_exit
__p__commode
wcscmp
free
_CxxThrowException
__dllonexit
swprintf
wcscpy
_controlfp
_ftol
_c_exit
realloc
exit
_purecall
wcslen
wcsncpy

kernel32

HeapAlloc
DisableThreadLibraryCalls
GetModuleFileNameA
GetCurrentThread
LoadLibraryW
QueryPerformanceCounter
GetModuleHandleA
DeleteCriticalSection
GetSystemTimeAsFileTime
HeapDestroy
GetProcessHeap
GetTickCount
GetCurrentProcessId
VirtualAlloc
InterlockedIncrement
EnterCriticalSection
GetCommandLineA
LeaveCriticalSection
LocalFree
GetCurrentProcess
ExitProcess
lstrlenA
VirtualFree
GetVersion

advapi32

CloseServiceHandle
RegCloseKey
RegDeleteValueW
RegQueryValueExA
RegEnumValueW
RegQueryInfoKeyW
RegQueryValueExW
RegOpenKeyExA
RegCreateKeyExA

user32

SendMessageW
GetWindowRect
KillTimer
ShowWindow
GetFocus
SetWindowPos
SetForegroundWindow
GetClientRect
PostMessageW
DispatchMessageW

version

GetFileVersionInfoA
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerQueryValueA

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 15KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bbd8ea805c3595700e4f91dcbfb5d03c

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

msvcrt

kernel32

advapi32

user32

version

Sections

.text Size: 10KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 6KB

.idata Size: 15KB - Virtual size: 47KB

.idata Size: 13KB - Virtual size: 22KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 10KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 6KB

.idata
Size: 15KB - Virtual size: 47KB

.idata
Size: 13KB - Virtual size: 22KB

.rsrc
Size: 2KB - Virtual size: 2KB