a913a80eeb50f209565155279204c7e13a74eb7af489e5e439a12ddd73121999

Sharing

Copy URL Twitter E-mail

General

Target

a913a80eeb50f209565155279204c7e13a74eb7af489e5e439a12ddd73121999
Size

124KB
MD5

6f9ffe65ca2d9d0b89fedcea82ec0010
SHA1

76982b0232fa32efe5d8f25f934a1356265c3963
SHA256

a913a80eeb50f209565155279204c7e13a74eb7af489e5e439a12ddd73121999
SHA512

0153805e040e891db9120620f74c2eb11ac837939c875e43fe856e37f56ba3157863503007cdaeebcb4e80ca27b89392cbaafbcfa3270fb682dde48cebc6eafd
SSDEEP

1536:DPnxGZIzgXtPZpuFLaGUaG6VmfnC7tzYQubPVBZZ+q:DPYZIzYtPZeLtUaPVQnstzYJZZ+

Score

N/A

Malware Config

Signatures

Files

a913a80eeb50f209565155279204c7e13a74eb7af489e5e439a12ddd73121999
.exe windows x86

9ddf2ef69f52b5d3cff25f496072b16f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

user32

SendMessageA
PostQuitMessage
DestroyWindow
DefWindowProcA
CreateWindowExA
ShowWindow
UpdateWindow
LoadIconA
RegisterClassExA
GetMessageA
TranslateMessage
DispatchMessageA
EndPaint
BeginPaint
SetWindowPos
SetWindowTextA

kernel32

Sleep
LoadLibraryA
GetCommandLineW
lstrcpynA
GetStartupInfoA
MultiByteToWideChar
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetProcAddress
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSection
GetCPInfo
GetACP
GetOEMCP
VirtualAlloc
HeapReAlloc
RtlUnwind
HeapSize

gdi32

CreateBitmapIndirect
CreatePen
CreateFontIndirectA
CreateCompatibleDC
BitBlt
DeleteDC
TextOutA
SelectObject
GetPixel
CreateBitmap
SetBkColor
GetTextExtentPoint32A
ArcTo
BeginPath
CreateRectRgn
CreateFontA
GetObjectA
AnimatePalette
SetPixel
GetCurrentObject
GetTextAlign
GetTextMetricsA
AddFontResourceA
CreateDIBitmap

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ddf2ef69f52b5d3cff25f496072b16f

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 10KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 10KB

.rsrc
Size: 4KB - Virtual size: 1KB