db6eb90fa6dd16cde934c4d2efd60d8dc17cf997ba3a8dc72b8e4bccf3837903

Sharing

Copy URL

Twitter E-mail

General

Target

db6eb90fa6dd16cde934c4d2efd60d8dc17cf997ba3a8dc72b8e4bccf3837903
Size

76KB
MD5

6fee47db2a97269205a07d2679a6df32
SHA1

fc367ac7272845ef6669131eb52083f1a427f5c9
SHA256

db6eb90fa6dd16cde934c4d2efd60d8dc17cf997ba3a8dc72b8e4bccf3837903
SHA512

56591f4238d2b484c0e560f5409985a489013bbbf836afc728f9e54309eb4d6bb92aae58a0c561373127a9f17809d2876876758bb9dd8ee6a64ff4ef436d5358
SSDEEP

768:U6xSRbJevhW4ubRhe9ptU96V6NJvGyFU7bS08ZPzHNYM/rrNs/sHziglCkC5HVY6:aJev3S7erWoVi/GbT8LHNnrrqcVGHyP

Score

N/A

Malware Config

Signatures

Files

db6eb90fa6dd16cde934c4d2efd60d8dc17cf997ba3a8dc72b8e4bccf3837903
.exe windows x86

536776597003bbefce750fe0e7e4f144

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
HeapAlloc
GetProcAddress
GetModuleHandleA
LoadLibraryA
InterlockedDecrement
LocalFree
InterlockedIncrement
GetVersionExW
UnhandledExceptionFilter

user32

GetWindowTextLengthW
SetScrollPos
EnableWindow
EndPaint
EndMenu
EndDialog
EndDeferWindowPos
EnableScrollBar
EnableMenuItem
EmptyClipboard
CloseClipboard
ClipCursor
ClientToScreen
ChildWindowFromPointEx
ChildWindowFromPoint
DialogBoxParamW
CreateDialogParamW
GetWindowTextW
SetWindowPos
SetCursor
SetForegroundWindow
FindWindowW
GetSystemMetrics
MoveWindow
SendMessageW
CharNextW
CheckMenuItem
CharPrevExA
CharPrevW
CharToOemA
CharToOemBuffA
CharToOemBuffW
CheckDlgButton
CheckMenuRadioItem
CheckRadioButton
CopyIcon
CopyImage
EnumChildWindows

gdi32

SetAbortProc
GetTextMetricsW
SetBkMode
StartDocW
SetWindowExtEx
SetViewportExtEx
SetMapMode
CreateFontIndirectW
StartPage
LPtoDP
AbortDoc
EndDoc
DeleteDC
TextOutW
GetTextExtentPoint32W
CreateDCW
SelectObject
GetTextFaceW
EndPage

advapi32

RegOpenKeyW
RegOpenKeyA

msi

ord55

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 488B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata1
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata2
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata3
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata4
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata5
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

xata6
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

536776597003bbefce750fe0e7e4f144

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

msi

Sections

.text Size: 44KB - Virtual size: 43KB

.data Size: 512B - Virtual size: 488B

xata1 Size: 4KB - Virtual size: 3KB

xata2 Size: 4KB - Virtual size: 3KB

xata3 Size: 4KB - Virtual size: 3KB

xata4 Size: 4KB - Virtual size: 3KB

xata5 Size: 4KB - Virtual size: 3KB

xata6 Size: 4KB - Virtual size: 3KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 1024B - Virtual size: 744B

.text
Size: 44KB - Virtual size: 43KB

.data
Size: 512B - Virtual size: 488B

xata1
Size: 4KB - Virtual size: 3KB

xata2
Size: 4KB - Virtual size: 3KB

xata3
Size: 4KB - Virtual size: 3KB

xata4
Size: 4KB - Virtual size: 3KB

xata5
Size: 4KB - Virtual size: 3KB

xata6
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 1024B - Virtual size: 744B