4dcf290f21f5b3490a60110b06e077a3db400ebffd0267a22e385f4cb208fcf2

General

Target

4dcf290f21f5b3490a60110b06e077a3db400ebffd0267a22e385f4cb208fcf2
Size

233KB
MD5

038a4ab2af1f0e98b3d23fa8b64d51b4
SHA1

cbce678f6254a0c7f8d8beb5f3862ba46d2e9090
SHA256

4dcf290f21f5b3490a60110b06e077a3db400ebffd0267a22e385f4cb208fcf2
SHA512

d8b6700051171c2be151ee3ce2f99758388da388f2245c6703f51c25b35af0fc68a83acbc5ef6e8e57374e096c17a22196ccf306e85fede09d5950dd5a7635a8
SSDEEP

3072:fS24X17sC4eMDbBK/Lp+o+KW6ORuDqEYlvgoWYWLutlyIYdNB6zL53KEcN3TY+69:fSHX1Q7W8o+Is/NResDmZGMK+sh

Score

N/A

Malware Config

Signatures

Files

4dcf290f21f5b3490a60110b06e077a3db400ebffd0267a22e385f4cb208fcf2
.exe windows x86

2e76c28699d08582a25d1e91a38efe75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
CommDlgExtendedError
PageSetupDlgA
ChooseColorW
FindTextA
GetSaveFileNameW
ChooseFontA

kernel32

GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
GetCommandLineA
HeapSetInformation
GetStartupInfoW
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
EncodePointer
GetLastError
LoadLibraryW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
HeapFree
Sleep
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapSize
RtlUnwind
HeapAlloc
HeapReAlloc
IsProcessorFeaturePresent
LCMapStringW
MultiByteToWideChar
GetStringTypeW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
SetFilePointer
CloseHandle
WriteConsoleW
SetStdHandle
CreateFileW

Sections

.text
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 174KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e76c28699d08582a25d1e91a38efe75

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

kernel32

Sections

.text Size: 41KB - Virtual size: 41KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 174KB - Virtual size: 174KB

.text
Size: 41KB - Virtual size: 41KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 174KB - Virtual size: 174KB