2df116b86632f277ba7291383760243813b3fe86e3cb7d67a48fec0f552c4f69

General

Target

2df116b86632f277ba7291383760243813b3fe86e3cb7d67a48fec0f552c4f69
Size

147KB
MD5

906f25620ee0c9b1adf6d7d19ad69342
SHA1

7a28d79828e7c4290467d51ca97286f6d2c8844a
SHA256

2df116b86632f277ba7291383760243813b3fe86e3cb7d67a48fec0f552c4f69
SHA512

db87a895a4bf48ff5c69f3ddec04fe6cc3007313eb33410e0db29085a38c9ca993a3bccfb01a412609866caf11d3aab9a563f128922fb1e05cb8f0e544fdf0b5
SSDEEP

3072:FCU60GyFMuLuY/vtFimz6hdi9ai2y4TT4XRnMN0CGtBluoguCXBs:FC5huLVcmz6kai2yS4XRnQ0rtmo

Score

N/A

Malware Config

Signatures

Files

2df116b86632f277ba7291383760243813b3fe86e3cb7d67a48fec0f552c4f69
.exe windows x86

df63e9e42a7b9758ecdc4a9651f36ad5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrToIntA
StrCpyW

gdi32

ScaleWindowExtEx
GetObjectW
SelectObject
SetRectRgn
CreateBrushIndirect
SetPaletteEntries

kernel32

GetSystemWindowsDirectoryA
IsDBCSLeadByte
SetEndOfFile
lstrcmpiW
lstrcpyW
GetTimeFormatA
LoadResource
lstrcmpiA
ExitProcess
GetThreadContext

user32

LoadMenuA
wsprintfW
SetLastErrorEx
DestroyCursor
DestroyIcon
CallWindowProcA
RegisterHotKey
OpenInputDesktop
DialogBoxParamW
KillTimer
InternalGetWindowText
InvalidateRgn
InsertMenuW
CharLowerW

Exports

Exports

?__PMGlbwmwnEVWbb_@@YGPAHPAGH@Z
?_HNSFE_kt__byr_WO_m_h@@YGFEI@Z
?Fa_fzFADWY@@YGDPAI@Z
?_KOujpK_WXIDpNMFofai@@YGDIM@Z
?nrYr_TNPZECD_AD_FG_@@YGGK_N@Z
?AOT_Ui_udo_gpBCTOe_hy@@YGPADPAI@Z
?_Wpbpexckjf_OENqm@@YG_N_NH@Z

Sections

.text
Size: 53KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pacdat
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df63e9e42a7b9758ecdc4a9651f36ad5

Headers

File Characteristics

Imports

shlwapi

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 53KB - Virtual size: 213KB

.data Size: 34KB - Virtual size: 33KB

.pacdat Size: 18KB - Virtual size: 17KB

.idat Size: 14KB - Virtual size: 13KB

.rdata Size: 17KB - Virtual size: 17KB

.rsrc Size: 7KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 53KB - Virtual size: 213KB

.data
Size: 34KB - Virtual size: 33KB

.pacdat
Size: 18KB - Virtual size: 17KB

.idat
Size: 14KB - Virtual size: 13KB

.rdata
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 7KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 1KB