c7d789bc32da2d50205c6c5ad692c797abb21cdddfc46901d9839aa316d7d845

General

Target

c7d789bc32da2d50205c6c5ad692c797abb21cdddfc46901d9839aa316d7d845
Size

387KB
MD5

6301dbc35dc2b95dc15797b3f40ab570
SHA1

89647f68847fc36b455a1559021cc7985bb79b45
SHA256

c7d789bc32da2d50205c6c5ad692c797abb21cdddfc46901d9839aa316d7d845
SHA512

431d1797920e9ea1ebf162cf9e9088b9513519d5498742d669544193f4c8963e225b40412e2898e5c49f5dc905810cce592fcae9f68deb03e2b6ff1fd190854c
SSDEEP

6144:2UjSrEfIe7vB5knq6iLVyfnXNYFPUNOPZuy5dH76Jdjx4/vjZLr6tt8v:Jdnx6ffnXiFMQJnejx4zNot

Score

N/A

Malware Config

Signatures

Files

c7d789bc32da2d50205c6c5ad692c797abb21cdddfc46901d9839aa316d7d845
.exe windows x86

8e3a90a724b1163bf74aa8873fe800c9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZClose

kernel32

WideCharToMultiByte
SetLastError
FindClose
FlushFileBuffers
GetDateFormatW
CloseHandle
GetUserDefaultUILanguage
lstrcpyW
GetStartupInfoA
GetCurrentThreadId
FoldStringW
CreateFileMappingW
LocalFree
QueryPerformanceCounter
UnhandledExceptionFilter
SetUnhandledExceptionFilter
CreateFileW
IsDebuggerPresent
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent

advapi32

RegUnLoadKeyW
RegUnLoadKeyA
RegOpenKeyExA
RegSetValueExW

comdlg32

GetOpenFileNameW

gdi32

EnumFontsW
EndPage
DeleteDC
StartDocW
GetStockObject
GetObjectW

shell32

DragQueryFileW
ShellAboutW
DragFinish

user32

SetWindowLongW
CreateWindowExW
GetMenuState
CharLowerW
LoadAcceleratorsW
SetScrollPos
GetDC
GetWindowPlacement
ScreenToClient
GetFocus
SetWindowPlacement
GetMessageW
UnhookWinEvent
MessageBeep
IsClipboardFormatAvailable
GetDesktopWindow
GetParent
DrawTextExW
OpenClipboard
ReleaseDC
GetMenu
LoadCursorW

Sections

.text
Size: 239KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e3a90a724b1163bf74aa8873fe800c9

Headers

File Characteristics

Imports

lz32

kernel32

advapi32

comdlg32

gdi32

shell32

user32

Sections

.text Size: 239KB - Virtual size: 238KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 18KB - Virtual size: 1.2MB

.rsrc Size: 125KB - Virtual size: 125KB

.text
Size: 239KB - Virtual size: 238KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 18KB - Virtual size: 1.2MB

.rsrc
Size: 125KB - Virtual size: 125KB