5dfc831ddadbe3db3d06ebee5c9c8c2275ac33d3091fc49a9c46198dd687c3d5

General

Target

5dfc831ddadbe3db3d06ebee5c9c8c2275ac33d3091fc49a9c46198dd687c3d5
Size

64KB
MD5

7c7e1a42a9ca932d261fb74d43221e51
SHA1

28bde0eac99fd2fcd5b1fdbae9c48d3d4d0e5bac
SHA256

5dfc831ddadbe3db3d06ebee5c9c8c2275ac33d3091fc49a9c46198dd687c3d5
SHA512

7d1c6f86e549f7ae9aad7a3f8004237828bac9ebecc10ff5915157408538a3ce3ad0711dbda6a1c10abf9e3ae3189b7414cad45c236a9424abe4caf2dc0da233
SSDEEP

1536:LCedFik1pfswwUfpQhHc+yNvRP43wcSl+6YD:xdskaiQh8T43wVl0

Score

N/A

Malware Config

Signatures

Files

5dfc831ddadbe3db3d06ebee5c9c8c2275ac33d3091fc49a9c46198dd687c3d5
.exe windows x86

4f83c09a13444215658061194628ece0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByteEx
SearchPathA
LocalFileTimeToFileTime
SizeofResource
CreateMutexA
GetThreadContext
FlushFileBuffers
IsBadStringPtrW
GlobalAddAtomA
SetCommMask
FoldStringW
LocalFree
HeapUnlock
GetWindowsDirectoryA

user32

DefFrameProcW
IsWindowUnicode
GetKeyState
IsCharAlphaA
GetClassInfoA
DefFrameProcA
CharLowerA
CharNextA
UpdateWindow
IsIconic
GetMenuItemRect
EnableWindow
GetCursorPos
OemToCharBuffA

shlwapi

StrCmpNIA

gdi32

RectInRegion
LineDDA
CreateICW
ExtTextOutW
CreateBrushIndirect
ScaleWindowExtEx
RectVisible

comctl32

ImageList_Draw
ImageList_ReplaceIcon

comdlg32

ReplaceTextW
PrintDlgW
CommDlgExtendedError

Exports

Exports

?XrLnsumzrbvhsMowy@@YGPADGF@Z
?Qmjgkiao@@YGPAKJ@Z
?_LtaoqjvnnWxjhlCtvmi@@YGKPAEJ@Z
?VlSweruikiwclEcaVmmplr@@YGGIPAM@Z
?XfsxfLivynynjxVr@@YGGKF@Z
?IzgsipfewhlIyq@@YGPA_NPAJG@Z
?ZmqjmgFdczdr@@YGKG@Z

Sections

.itext
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f83c09a13444215658061194628ece0

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

gdi32

comctl32

comdlg32

Exports

Exports

Sections

.itext Size: 28KB - Virtual size: 28KB

.text Size: 5KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 2KB - Virtual size: 2KB

.itext
Size: 28KB - Virtual size: 28KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 2KB - Virtual size: 2KB