2e423507bf1ef24fe40589801a675f91e0133596bd5a8b02948cfec25bb7ef8c

General

Target

2e423507bf1ef24fe40589801a675f91e0133596bd5a8b02948cfec25bb7ef8c
Size

840KB
MD5

6a5fe327435dea8f7bf8dcf8b1a44398
SHA1

4ac28ed38cae932bbeed4e9de41f73b811c76594
SHA256

2e423507bf1ef24fe40589801a675f91e0133596bd5a8b02948cfec25bb7ef8c
SHA512

f116e183e15558e81bf11fde1a53a3a7666a0a89e1b21dde6395d29aeba7a1808616bcc9df5f7414da2ea8a6cf01a0b5c9fd954af5b6928f242f0d5bc4e92fb0
SSDEEP

24576:1MSDd3gkiaJHbERbthONp/5PXuzk15RGJJ/9wBM:1MSFiaJHQRb8ptK9riB

Score

N/A

Malware Config

Signatures

Files

2e423507bf1ef24fe40589801a675f91e0133596bd5a8b02948cfec25bb7ef8c
.exe windows x86

e5c32748adc0a47a4a4709cba41c9628

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

ntshrui

IsFolderPrivateForUser
IsPathSharedW
IsPathSharedA
GetNetResourceFromLocalPathA

dsprop

MsgBox
ErrMsg
ReportError

crypt32

CryptFindOIDInfo
CertFreeCRLContext
CertCloseStore
CertCompareCertificate
CertFindAttribute
CertDuplicateStore
CertControlStore
CertAlgIdToOID
CertDuplicateCRLContext
CertFindCRLInStore
CertOpenStore
CryptEnumOIDInfo
CertSaveStore
CertGetNameStringA

uxtheme

GetThemeEnumValue
GetThemeBool
GetWindowTheme
DrawThemeBackground
IsThemeActive
GetThemeFont
GetThemeTextExtent
CloseThemeData
OpenThemeData
GetThemeTextMetrics

kernel32

IsValidCodePage
SetCurrentDirectoryA
CreateEventA
OpenMutexA
HeapCreate
GetModuleFileNameA
CreateMutexA
GetLogicalDrives
LoadLibraryA
GetDiskFreeSpaceA
lstrcmpA
GetMailslotInfo
PurgeComm
CloseHandle
CreateTimerQueue
IsBadStringPtrA
DisconnectNamedPipe
GetFileSize
FindResourceA
CreateNamedPipeA
CopyFileA
CreateMailslotA
GetBinaryTypeA
FormatMessageA
GetProcAddress
VirtualQueryEx
QueryDosDeviceA
EncodePointer
MoveFileA
CreateSemaphoreA
GetCurrentDirectoryA
SetFileAttributesA
FileTimeToSystemTime
lstrcmpiA
CreatePipe
GetProcessHeap

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 805KB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e5c32748adc0a47a4a4709cba41c9628

Headers

DLL Characteristics

File Characteristics

Imports

ntshrui

dsprop

crypt32

uxtheme

kernel32

Sections

.text Size: 34KB - Virtual size: 33KB

.rdata Size: 805KB - Virtual size: 2.2MB

.text
Size: 34KB - Virtual size: 33KB

.rdata
Size: 805KB - Virtual size: 2.2MB