047e243126fb234915358f40652922b7f05afc146446c0069893e76616d50bed

General

Target

047e243126fb234915358f40652922b7f05afc146446c0069893e76616d50bed
Size

263KB
MD5

5fe301677913e2d81e201093fb51b12e
SHA1

3976e6db8e6d5aec557362696d963f0ec4aa4dcf
SHA256

047e243126fb234915358f40652922b7f05afc146446c0069893e76616d50bed
SHA512

c636cd9ca768d5cdc9f40fd802161ca125ea9530d3eaac2a326fd56e92966173f414f989c0975cc28d91d25e4d1a46c116c207c7293e8ba2525c6bcd1b29bd8b
SSDEEP

6144:438c9NbOnB97F7zp1WtESmoy4lOdgogO4C0dBuNa3SVQaZjBv:E8c9BcB97F7zPWeSmoBunmBwQaNB

Score

N/A

Malware Config

Signatures

Files

047e243126fb234915358f40652922b7f05afc146446c0069893e76616d50bed
.exe windows x86

eb1dbb446fb3d9b34f980ee4f2445d17

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

memcpy

user32

GetMenuState
SwitchToThisWindow
OemToCharBuffA
DrawIcon
CharNextExA
GetDC
GetCursorPos
IsIconic
DefWindowProcW
CreateDialogParamW
GetFocus
LoadMenuA
SetWindowTextA
GetWindowLongW
SystemParametersInfoA
LoadCursorW
MoveWindow
GetLastActivePopup
MessageBoxExA
CheckRadioButton
MonitorFromPoint
DeferWindowPos
TrackPopupMenuEx
SystemParametersInfoW
IsWindow
BringWindowToTop
GetMessageA
GetMessageW
AttachThreadInput
GetUpdateRgn
wsprintfA
GetWindowDC
EnumWindows
GetKeyboardLayoutNameW
BeginPaint

comdlg32

PrintDlgW
ChooseColorW
GetFileTitleW

kernel32

lstrlenW
FoldStringW
GetOverlappedResult
SetUnhandledExceptionFilter
CompareStringA
EnumSystemLocalesA
WinExec
SizeofResource
GetShortPathNameW
VerifyVersionInfoW
SetMailslotInfo
SetPriorityClass
DeviceIoControl
FlushViewOfFile
CloseHandle
GetFullPathNameW
lstrcmpA
GetModuleHandleA

gdi32

LPtoDP
CreateBrushIndirect
CreateSolidBrush
GetTextExtentPointW
SetROP2
CreateBitmap
RealizePalette
SetStretchBltMode
BeginPath
CreateEllipticRgnIndirect
SelectClipRgn
GetTextColor
PtInRegion
GetCurrentPositionEx
ResizePalette
EnumFontsW
UnrealizeObject

Exports

Exports

?KDFJHjhfuyUFuiuydyufds@@YGKEPA_WG@Z

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

data
Size: 17KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 210KB - Virtual size: 210KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb1dbb446fb3d9b34f980ee4f2445d17

Headers

File Characteristics

Imports

ntdll

user32

comdlg32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 32KB

data Size: 17KB - Virtual size: 150KB

.rsrc Size: 210KB - Virtual size: 210KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 32KB

data
Size: 17KB - Virtual size: 150KB

.rsrc
Size: 210KB - Virtual size: 210KB

.reloc
Size: 2KB - Virtual size: 1KB