02043db4c3386da38e72e6720e421cc57d0916cac3f0d30fdab192a69f00c7f9

Sharing

Copy URL Twitter E-mail

General

Target

02043db4c3386da38e72e6720e421cc57d0916cac3f0d30fdab192a69f00c7f9
Size

180KB
MD5

5633d3aa9a8bbe8435ee90f2a7162a4d
SHA1

2327c7763d25e3129a310d5f4aa44edcb685e15f
SHA256

02043db4c3386da38e72e6720e421cc57d0916cac3f0d30fdab192a69f00c7f9
SHA512

1d39e30856262cdabc539873705f1c555463791c037d4d4101274835ed7bad9a7bfde8106d223c83084441f0047f45010ada6f9e2e25322646e06b4df33677eb
SSDEEP

1536:A4qU+8uOZdegVb+sUmgj7lnb+oXMfGfHan89lG:A5U+8/ZFisUhjxn2fGf6D

Score

N/A

Malware Config

Signatures

Files

02043db4c3386da38e72e6720e421cc57d0916cac3f0d30fdab192a69f00c7f9
.exe windows x86

e71b95bf4c1d587ebe5aa7be482e7552

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
SetEvent
ExpandEnvironmentStringsW
lstrcmpiW
HeapReAlloc
CloseHandle
GetOEMCP
GetCurrentThreadId
VirtualAlloc
FindResourceA
LoadLibraryW
LocalAlloc
IsValidCodePage
GetCurrentProcess
ExitProcess
HeapAlloc
CreateEventW
GetDriveTypeA
RaiseException
GetVersion
LCMapStringW
IsDebuggerPresent
GetModuleHandleA
DeviceIoControl
GetThreadLocale

msvcrt

wcsncpy
_purecall
_controlfp
wcsncmp
_ftol
fprintf
strtoul
__p__iob
_rotl
ctime
_wcslwr
srand
rand
_ultoa
__set_app_type
malloc
_finite
fclose
_snwprintf
_rotr
_wcsnicmp
__initenv
_stat
_CIpow
_lock
_local_unwind2
printf
atoi
_wfopen
swprintf
_ltoa
strchr
__p__fmode
sscanf
wcsrchr
qsort
__p__osver

user32

GetDlgCtrlID
CharNextA
IsChild
SendMessageW
OffsetRect
GetMenu
DefWindowProcW
GetDC
GetClassNameW
GetMessageW
GetWindowRect
IsDlgButtonChecked
IntersectRect
GetWindowLongW
GetMenuItemCount
FindWindowW
BeginPaint
GetCapture
SetWindowLongA
RegisterClassExW
MoveWindow
EnableWindow
GetSysColorBrush
GetWindowTextW
SystemParametersInfoW
ScreenToClient
SetDlgItemTextW
GetActiveWindow
GetDlgItem
GetProcessWindowStation
CreateWindowExW
GetClassNameA
SetCursor

ole32

GetHGlobalFromStream
OleRun
CoReleaseMarshalData
CreateOleAdviseHolder
CLSIDFromString
CoInitializeSecurity
CoDisconnectObject
CoFreeUnusedLibraries
CoGetObjectContext
CreateBindCtx
CoInitializeEx
OleRegGetUserType
CoTaskMemRealloc
CoSetProxyBlanket
CoRevertToSelf
CoRevokeClassObject
CoCreateInstance
CoInitialize
OleCreateStaticFromData
CoGetClassObject
OleSaveToStream
PropVariantCopy
CreateStreamOnHGlobal
StgOpenStorage
PropVariantClear
CoImpersonateClient
CreateDataAdviseHolder
CoRegisterClassObject
CreateILockBytesOnHGlobal
OleUninitialize
CoTaskMemFree

comdlg32

GetOpenFileNameW
GetFileTitleW
GetFileTitleA
GetSaveFileNameW
PrintDlgA
ChooseColorA
GetOpenFileNameA
PageSetupDlgA
ChooseFontW
PrintDlgExW
FindTextW
ChooseFontA
GetSaveFileNameA
ChooseColorW
CommDlgExtendedError

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 71KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 68KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e71b95bf4c1d587ebe5aa7be482e7552

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

ole32

comdlg32

Sections

.text Size: 9KB - Virtual size: 9KB

DATA Size: 29KB - Virtual size: 29KB

.idata Size: 71KB - Virtual size: 80KB

BSS Size: 68KB - Virtual size: 120KB

.text
Size: 9KB - Virtual size: 9KB

DATA
Size: 29KB - Virtual size: 29KB

.idata
Size: 71KB - Virtual size: 80KB

BSS
Size: 68KB - Virtual size: 120KB