4d344e9adc79a38ef03eb5ba872fdc7e8f07b7e95ac71a7fd4a69717d4d256be

General

Target

4d344e9adc79a38ef03eb5ba872fdc7e8f07b7e95ac71a7fd4a69717d4d256be
Size

144KB
MD5

6b3915c573abe410b4160d49c7296afd
SHA1

0940b1c4c131f1ddd0145b0b25f626537ecf6003
SHA256

4d344e9adc79a38ef03eb5ba872fdc7e8f07b7e95ac71a7fd4a69717d4d256be
SHA512

aa3fd1b689a30c4de40b17fd0b3ead90b93f6e804a147937889f095d650b89b100b18d77cc859341253e82138c3e4a662ccb6963104265f05ae0ea6255e17366
SSDEEP

3072:Xjf/EeLEg9fFZ8UM4IvJ2A1A8C67DeDNDLqBlzBlLk:DZEsbwrJ2t8Z7ISlbk

Score

N/A

Malware Config

Signatures

Files

4d344e9adc79a38ef03eb5ba872fdc7e8f07b7e95ac71a7fd4a69717d4d256be
.exe windows x86

dc043d068cc2c93fe89804104f2a712c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileExW
GetStartupInfoA
GetCurrentProcessId
GetModuleHandleA
EnumUILanguagesW
DnsHostnameToComputerNameA
HeapWalk
OpenFileMappingW

msvcrt

_scprintf
__getmainargs
__p__fmode
_controlfp
_exit
_except_handler3
_adj_fdiv_m16i
__p__commode
_onexit
_wmktemp
__set_app_type
exit
_strset
_outp
_ismbcl1
_initterm
_acmdln
_winmajor
_adjust_fdiv
_XcptFilter
__setusermatherr
_mbctokata
_seh_longjmp_unwind

user32

SetMenuInfo
CloseWindowStation
DdeInitializeA
VkKeyScanExA
DialogBoxParamW
EnumDisplaySettingsExA
SetKeyboardState
CopyImage
MapWindowPoints
VkKeyScanExW
GetWindowContextHelpId
AppendMenuA
MapVirtualKeyW

gdi32

GetDCPenColor
GetObjectW
GetEnhMetaFileHeader
PathToRegion
BeginPath
GetRelAbs

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc043d068cc2c93fe89804104f2a712c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 82KB - Virtual size: 81KB

.rdata Size: 51KB - Virtual size: 51KB

.data Size: 512B - Virtual size: 88KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 82KB - Virtual size: 81KB

.rdata
Size: 51KB - Virtual size: 51KB

.data
Size: 512B - Virtual size: 88KB

.rsrc
Size: 8KB - Virtual size: 8KB