d827863d3cb3df499b6a19dd692deabe39b45b56e24e3e48b0e66634d72622a0

Sharing

Copy URL Twitter E-mail

General

Target

d827863d3cb3df499b6a19dd692deabe39b45b56e24e3e48b0e66634d72622a0
Size

274KB
MD5

6cd784bedfb5b7e13635f4848b36b630
SHA1

98d2ded9269d30b5bcf415a011c222fef0bc8978
SHA256

d827863d3cb3df499b6a19dd692deabe39b45b56e24e3e48b0e66634d72622a0
SHA512

b7d6b55741ef6001708ddb34a5189fc7c9ee016e1a39480bc89889781498c7dfe691911697602dd6d7b4a32d67f95cf1ce96786cdebfcf7789ac21e07ee6b3d8
SSDEEP

6144:NYQ2cMJ4y/bx/Kb4ZPMf2MSpdj/5wFhyy:2Imbx/64ZPM+75Cy

Score

N/A

Malware Config

Signatures

Files

d827863d3cb3df499b6a19dd692deabe39b45b56e24e3e48b0e66634d72622a0
.exe windows x86

e75aec76525adbac888e3c60f16f7124

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Draw
ImageList_GetIconSize
DestroyPropertySheetPage

shlwapi

StrToIntW
PathSkipRootA
PathGetCharTypeA
PathIsURLW

kernel32

lstrcpyA
EnumSystemCodePagesW
DebugActiveProcess
lstrlenA
SetEnvironmentVariableW
GetTickCount
IsBadReadPtr
GetSystemDirectoryA
GetProfileIntA
GetStartupInfoA
HeapSize

user32

IsCharUpperA
EqualRect
MessageBoxW
GetNextDlgTabItem
DrawTextA
LoadBitmapA
LoadIconA
wsprintfA
FindWindowExA
BeginPaint
GetScrollRange
CharToOemW
GetDC
GetCursorPos
GetKeyboardLayout
LoadMenuW
PeekMessageA
GetClassNameW
EmptyClipboard
SetMenuDefaultItem
CharUpperW
IsCharAlphaNumericW

gdi32

GetBitmapBits
SetBitmapBits
GetLayout
GetTextExtentPoint32W
GetEnhMetaFileBits
CreateEnhMetaFileA
SetTextColor
GetDeviceCaps
GetDIBits
CreateDCA
CreateDCW
EnumFontFamiliesExA
Rectangle
GetMapMode
ExtTextOutW
Ellipse
GetCharWidth32W
EnumFontFamiliesA
GetNearestPaletteIndex
IntersectClipRect
OffsetViewportOrgEx
CloseEnhMetaFile
CreateEnhMetaFileW

Exports

Exports

?SectionOutput@@YGGPAG@Z

Sections

.crt
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e75aec76525adbac888e3c60f16f7124

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.crt Size: 1024B - Virtual size: 1000B

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 1024B - Virtual size: 1000B

.data Size: 248KB - Virtual size: 248KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.crt
Size: 1024B - Virtual size: 1000B

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 1024B - Virtual size: 1000B

.data
Size: 248KB - Virtual size: 248KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB