dbb034be646807129236c1c757041b1a4d32c7df9eff0ff0d0ab080673c19403

General

Target

dbb034be646807129236c1c757041b1a4d32c7df9eff0ff0d0ab080673c19403
Size

144KB
MD5

671aecb89c310d2c91243242403f09ea
SHA1

dbeee44163c6a0d359867d5b7ecfad1d9169c1b1
SHA256

dbb034be646807129236c1c757041b1a4d32c7df9eff0ff0d0ab080673c19403
SHA512

cff1864fc27eb9b67806e199c7f00e103478e1d7486776986f4e36338edbb863fdfb1eabbf9a1196459fe0a71be3e23ba37e4f2710fa5c672394b3c8dc08613f
SSDEEP

3072:8sbqwbL5PQJ1IB+o0TfLkLreyB0wJDG0:RmwbLyn3HgLU

Score

N/A

Malware Config

Signatures

Files

dbb034be646807129236c1c757041b1a4d32c7df9eff0ff0d0ab080673c19403
.exe windows x86

51760d93af94ff380f9b04731c29e1c0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
GetStartupInfoA
VirtualAllocEx
GetEnvironmentStrings
IsBadHugeReadPtr
HeapDestroy
GetFileAttributesA
lstrcatA
LoadLibraryA
FindFirstFileA
SetThreadLocale
GetCurrentProcess
GetProcessHeap
GlobalAddAtomA
ExitProcess
GetThreadLocale
GlobalAlloc
GetStringTypeA
MoveFileA
GetLocalTime
WriteFile
GetFileSize

shell32

SHGetDiskFreeSpaceA
SHGetFolderPathA
Shell_NotifyIconA
SHFileOperationA
Shell_NotifyIconW

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA
ChooseColorA

user32

SendMessageW
IsCharLowerA
IsWindowEnabled
GetMenu
SetActiveWindow
SetCapture
CharNextA
LoadBitmapA
SendMessageA

Exports

Exports

_KL8XCzUyNBhvmV@8
SpcwDd@20

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51760d93af94ff380f9b04731c29e1c0

Headers

File Characteristics

Imports

kernel32

shell32

comdlg32

user32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 9KB - Virtual size: 116KB

.data Size: 95KB - Virtual size: 95KB

.idata Size: 1KB - Virtual size: 1KB

.mdata Size: 512B - Virtual size: 104B

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 9KB - Virtual size: 116KB

.data
Size: 95KB - Virtual size: 95KB

.idata
Size: 1KB - Virtual size: 1KB

.mdata
Size: 512B - Virtual size: 104B

.rsrc
Size: 8KB - Virtual size: 8KB