d8819d216748375385c47da666768ecba780fcde965c3be626fc288775ad1ab9

Sharing

Copy URL Twitter E-mail

General

Target

d8819d216748375385c47da666768ecba780fcde965c3be626fc288775ad1ab9
Size

297KB
MD5

6e99c2c286062d2e15162483d6668de7
SHA1

26932dac3b13a40bad5ff475bf5001221f2af0f5
SHA256

d8819d216748375385c47da666768ecba780fcde965c3be626fc288775ad1ab9
SHA512

db9e37ddc3b6a221f5273d53d4036f58c04d7526c3e0b77ee2330b1016aa896a1db965c2461177f941bb1a3aa738f788c3d9172f6edac45bb461faa9f5b7a0f4
SSDEEP

6144:tH/5H1Ro189M0BDHEY0qhfphp98ApaBkC4gy:TV+18a0BrB0efrZp+4B

Score

N/A

Malware Config

Signatures

Files

d8819d216748375385c47da666768ecba780fcde965c3be626fc288775ad1ab9
.exe windows x86

89139199b20eba1a24dfe449d4351ea3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
ScaleWindowExtEx

comdlg32

GetSaveFileNameA
CommDlgExtendedError
ChooseFontA
GetOpenFileNameA

comctl32

ImageList_Write
ImageList_AddMasked
ImageList_GetImageCount
ImageList_SetDragCursorImage
ImageList_Destroy
ImageList_Remove
ImageList_SetBkColor
ImageList_SetIconSize

kernel32

CreateProcessA
CloseHandle
GetStartupInfoA
GetLastError
DeleteFileA
GetTickCount
CreateEventA
FileTimeToSystemTime
GetVersion
InterlockedExchange
WaitForSingleObject
Sleep
GetCurrentThreadId
FreeLibrary
LoadLibraryA
GetProcAddress
SetSystemTimeAdjustment
GetWindowsDirectoryA
LocalAlloc
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
RtlUnwind
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 744KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

89139199b20eba1a24dfe449d4351ea3

Headers

File Characteristics

Imports

gdi32

comdlg32

comctl32

kernel32

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 112KB - Virtual size: 112KB

.data Size: 105KB - Virtual size: 744KB

.data1 Size: 50KB - Virtual size: 50KB

.rsrc Size: 1024B - Virtual size: 920B

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 112KB - Virtual size: 112KB

.data
Size: 105KB - Virtual size: 744KB

.data1
Size: 50KB - Virtual size: 50KB

.rsrc
Size: 1024B - Virtual size: 920B