e4a648df213280a9f3b4412acdd036bd6798f3a5df106081ba9a557b08138434

Sharing

Copy URL Twitter E-mail

General

Target

e4a648df213280a9f3b4412acdd036bd6798f3a5df106081ba9a557b08138434
Size

221KB
MD5

66eb70f9a3ca9d106391f725c0d3cc6c
SHA1

5664f318b2a6869e7d4734aa4966a62bb8d88143
SHA256

e4a648df213280a9f3b4412acdd036bd6798f3a5df106081ba9a557b08138434
SHA512

79a1644983181e4b8081be6f41e543b7cf0438b21055367273b65f1e45d447d1a9ebc43f17e1f7da75bfadba2dc0379e6faf19aa7a3c39abdcc3c037d2910e16
SSDEEP

6144:zZXkQD5231vX1J3XyLcjClX1TSAIvIPBr:zZHD5231vXf3CLP9VSq

Score

N/A

Malware Config

Signatures

Files

e4a648df213280a9f3b4412acdd036bd6798f3a5df106081ba9a557b08138434
.exe windows x86

95a08a1ebe6eccfa63a7df6589ec2688

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetViewportOrgEx
SetWinMetaFileBits
MaskBlt
GetSystemPaletteEntries
GetObjectA
GetWindowOrgEx
CopyEnhMetaFileA
CreateDIBitmap
CreateDIBSection
CreateFontIndirectA
GetTextMetricsA
BitBlt
GetDIBits
ExtCreatePen
RectVisible
RealizePalette
GetEnhMetaFileHeader
SaveDC
GetPaletteEntries
SetPixel
SetBkColor
SetROP2
SetBkMode
ExcludeClipRect
SetTextColor
CreateHalftonePalette
SetEnhMetaFileBits
LineTo
GetClipBox
PolyPolyline
SetBrushOrgEx
GetCurrentPositionEx
CreateSolidBrush
SelectClipRgn
GetDCOrgEx
CreateBitmap
GetDeviceCaps
GetEnhMetaFileBits
GetBrushOrgEx
IntersectClipRect

shell32

Shell_NotifyIconA
CommandLineToArgvW

kernel32

CloseHandle
GetModuleHandleA
GetCurrentProcess
QueryPerformanceCounter
FreeLibrary
lstrlenW
GetCurrentProcessId
ExitProcess
GetFullPathNameW
GetCommandLineA
VirtualFree
FormatMessageW
VirtualAlloc
GetSystemTimeAsFileTime
GetTickCount
FileTimeToSystemTime
UnhandledExceptionFilter
GetTempPathW
GetLastError
GetProcAddress
LocalFree
lstrcpyW
LoadLibraryW
lstrcpynW

comctl32

ImageList_Destroy
ord17

msvcrt

_wcsnicmp
fclose
__wgetmainargs
__set_app_type
wcsrchr
_cexit
_initterm
wcscmp
_adjust_fdiv
_except_handler3
__p__commode
_exit
wcschr
wcscat
_wcsicmp
fwprintf
exit
_c_exit
__p__fmode
__winitenv
_controlfp
_XcptFilter

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyA

Sections

.text
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95a08a1ebe6eccfa63a7df6589ec2688

Headers

File Characteristics

Imports

gdi32

shell32

kernel32

comctl32

msvcrt

advapi32

Sections

.text Size: 181KB - Virtual size: 181KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 15KB - Virtual size: 15KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 181KB - Virtual size: 181KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 15KB - Virtual size: 15KB

.rsrc
Size: 13KB - Virtual size: 13KB