07a66c1be896d58f5ef7c2f12fea630cc3212d4d517aca389ecc55658a326b67

Sharing

Copy URL

Twitter E-mail

General

Target

07a66c1be896d58f5ef7c2f12fea630cc3212d4d517aca389ecc55658a326b67
Size

746KB
MD5

0247c6e435f4aba98a63c2e170dea940
SHA1

f48b5249f8a7715cbbcee3b9ff1d4e450c38deb2
SHA256

07a66c1be896d58f5ef7c2f12fea630cc3212d4d517aca389ecc55658a326b67
SHA512

c4b8e06bc3a7760acdaf63ad20b0a43cf0deac4c22f13b66fabe70009c059bc0b39e9f3da845632f1d91370a09e6c7029c975483153aed6a77098daf597130eb
SSDEEP

6144:XUB8tjH89Cr1ZLNdLFpy4BRzUZugabE32OetPCzOjkJWRAqPYnkGmBhAh0UQ63cp:kWNNdZpzCZudbEGOOCSjyLq1dACR

Score

N/A

Malware Config

Signatures

Files

07a66c1be896d58f5ef7c2f12fea630cc3212d4d517aca389ecc55658a326b67
.exe windows x86

d750615ac7f7c31b282a9ffe4ca0a2cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetSysColor
GetDC
DefWindowProcW
WindowFromPoint
GetMessageTime
SetWindowLongW
GetSysColorBrush
GetClassNameW
wsprintfW
IntersectRect
GetMessagePos

kernel32

ActivateActCtx
CreateActCtxA
CreateThread
ExitProcess
GetACP
GetModuleHandleA
GetProcAddress
LoadLibraryA
Sleep
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WriteConsoleW
FileTimeToLocalFileTime
InterlockedExchange
EnterCriticalSection

gdi32

SetTextColor
GetTextColor
Escape
ScaleViewportExtEx
DPtoLP
SetPixel
GetDeviceCaps

comctl32

ImageList_Add
_TrackMouseEvent
ImageList_GetIconSize
ImageList_Create

advapi32

RegOpenKeyW
RegQueryValueW
RegSetValueExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegEnumKeyW
RegQueryValueExW

ole32

CoLockObjectExternal
CLSIDFromString
CoFreeUnusedLibraries
OleUninitialize
RegisterDragDrop
CreateILockBytesOnHGlobal
OleInitialize

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

oledlg

OleUIBusyW

gdiplus

GdipDeleteGraphics
GdipGetImageWidth
GdiplusShutdown
GdiplusStartup

comdlg32

GetOpenFileNameW
GetFileTitleW
GetSaveFileNameW

imagehlp

BindImageEx

shell32

ShellExecuteW
DragQueryFileW
DragFinish

shlwapi

PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathStripToRootW

Sections

.text
Size: 615KB - Virtual size: 615KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 127KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d750615ac7f7c31b282a9ffe4ca0a2cc

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

advapi32

ole32

winspool.drv

oledlg

gdiplus

comdlg32

imagehlp

shell32

shlwapi

Sections

.text Size: 615KB - Virtual size: 615KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 127KB - Virtual size: 126KB

.text
Size: 615KB - Virtual size: 615KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 127KB - Virtual size: 126KB