5a7f7659b25df437d612786f5aac2d4020c450a209085192039760d70263d1e1

Sharing

Copy URL Twitter E-mail

General

Target

5a7f7659b25df437d612786f5aac2d4020c450a209085192039760d70263d1e1
Size

746KB
MD5

6b8a6ca81a02c0eb63e68f73fd9f6060
SHA1

de7fd5f806633f84af3a87066df723262534e164
SHA256

5a7f7659b25df437d612786f5aac2d4020c450a209085192039760d70263d1e1
SHA512

c166ce1785397ff39030d21e46812f389f3fd71b9c47d91c3d487768d2edc8d3c5e539344cb81e97c07914b41e5aa6f609c8cdfa18f19325e38afcce3071b027
SSDEEP

12288:Gs0qhPlpfqIrtACZudbEGOOCSjyLq1dACR:GqHLG4uJhr+CR

Score

N/A

Malware Config

Signatures

Files

5a7f7659b25df437d612786f5aac2d4020c450a209085192039760d70263d1e1
.exe windows x86

049c2d401cbebd074f6b1b8f4a696e55

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC
GetParent
CallNextHookEx
SetParent
MenuItemFromPoint
SetWindowPlacement
ShowScrollBar
GetKeyNameTextW
SetClipboardData
SendMessageW
GetMessagePos
GetWindowTextLengthW
FrameRect
SetPropW
GetForegroundWindow
DeferWindowPos
SendDlgItemMessageW
ClientToScreen
IsWindowEnabled
IntersectRect
wsprintfA
GetWindowThreadProcessId
AppendMenuW
RegisterClipboardFormatW
PtInRect
GrayStringW
MapVirtualKeyW
EqualRect
SetMenu
UpdateWindow
GetDlgItem
MapWindowPoints
GetDoubleClickTime
InvertRect
TrackPopupMenu
GetClipboardData
GetMenuItemRect
EndDialog
WinHelpW
SetActiveWindow
GetMenuCheckMarkDimensions

kernel32

ActivateActCtx
CreateActCtxA
CreateThread
ExitProcess
GetACP
GetModuleHandleA
GetProcAddress
GetProcessHeap
LoadLibraryA
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
GetFullPathNameW
FreeEnvironmentStringsW
GetStartupInfoA
WriteConsoleA
GetFileTime
GetFileAttributesW
ConvertDefaultLocale
GetCommandLineA
GetModuleHandleW
GetModuleFileNameW
GlobalLock
GetLocaleInfoW
FreeResource
GetThreadLocale
GetLocaleInfoA
GetStdHandle
GetCurrentThread
GlobalSize
GetCurrentProcessId
GetSystemInfo
GetTempPathA
WritePrivateProfileStringW
GetCommandLineW
GetVersionExA
GlobalAddAtomW
HeapReAlloc
CloseHandle
ExitThread
EnterCriticalSection
GetConsoleOutputCP
GlobalFree
WriteFile
CreateFileA
GetTimeZoneInformation
CopyFileW
SetErrorMode
GetModuleFileNameA
VirtualQuery
GetStringTypeW
LCMapStringA
FlushFileBuffers

gdi32

SetTextColor
GetTextColor

Sections

.text
Size: 615KB - Virtual size: 615KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

049c2d401cbebd074f6b1b8f4a696e55

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

Sections

.text Size: 615KB - Virtual size: 615KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 127KB - Virtual size: 126KB

.text
Size: 615KB - Virtual size: 615KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 127KB - Virtual size: 126KB