7e8adba1177922c6ede6c3c867a78cedd12d2d0fcfee3a21148f5138b5c420d4

Sharing

Copy URL Twitter E-mail

General

Target

7e8adba1177922c6ede6c3c867a78cedd12d2d0fcfee3a21148f5138b5c420d4
Size

84KB
MD5

3d55cdcf9fbbdabb3f6462fa9ef0f990
SHA1

a3da8d181f26aa4977cf96e7031bc8ed55ed22e3
SHA256

7e8adba1177922c6ede6c3c867a78cedd12d2d0fcfee3a21148f5138b5c420d4
SHA512

80b175c75bc99f04fba5d6d26fc1f150234565f9b44efc709d48db39d59fcfd38af87e68d3fe4241245e3dfb81ff0ece50e6831dff873895076419fd0c78a1d8
SSDEEP

1536:XjwlxlUDSIzckAQNCwmLF1dKSlnVS1Lm6x7YbnGX2bS4sZF:X8kStkAQQjdKmV1c7D2O5

Score

N/A

Malware Config

Signatures

Files

7e8adba1177922c6ede6c3c867a78cedd12d2d0fcfee3a21148f5138b5c420d4
.exe windows x86

3dab7154449eb7ed318080a78ee84244

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetPrivateProfileSectionA
WritePrivateProfileStructA
InterlockedExchange
EnterCriticalSection
GetFileSize
GetModuleHandleW
SetProcessWorkingSetSize
GetModuleHandleA
BeginUpdateResourceA
UnlockFileEx
GetDriveTypeA
WritePrivateProfileStringW
GetFileTime
OpenJobObjectA
RegisterWaitForSingleObjectEx
GetTempPathW
VirtualProtect
GetProcessHeap
CreateMailslotA
LoadLibraryA
GetCompressedFileSizeW
VirtualAlloc
IsValidLanguageGroup
VirtualFree
PulseEvent
ExitProcess
GetSystemTimeAsFileTime

msvcrt

sinh
_setmaxstdio
rand
?set_new_handler@@YAP6AXXZP6AXXZ@Z
??_Gbad_typeid@@UAEPAXI@Z
_CIpow
abs
_chkesp
_Gettnames
freopen
getenv
_mbctombb
memcpy
_dup2
_adj_fdivr_m16i
_wasctime
rename
_mbctoupper
__p__pwctype
_finite
is_wctype
_execvp
_yn
labs

comdlg32

PrintDlgExA
dwOKSubclass
GetSaveFileNameA
PrintDlgExW
ChooseFontW
dwLBSubclass
PrintDlgW
ReplaceTextW
GetOpenFileNameA
ChooseColorA
CommDlgExtendedError
PageSetupDlgA
FindTextA
PageSetupDlgW
GetFileTitleW
LoadAlterBitmap
Ssync_ANSI_UNICODE_Struct_For_WOW
GetFileTitleA
ChooseFontA
ReplaceTextA

winmm

waveInStop
mmioOpenW
timeKillEvent
waveInAddBuffer
mmsystemGetVersion
mmTaskYield
joy32Message

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dab7154449eb7ed318080a78ee84244

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

comdlg32

winmm

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 19KB - Virtual size: 18KB

.rsrc Size: 39KB - Virtual size: 38KB

.reloc Size: 512B - Virtual size: 62B

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 19KB - Virtual size: 18KB

.rsrc
Size: 39KB - Virtual size: 38KB

.reloc
Size: 512B - Virtual size: 62B