9536fd9f55c7daa6e8a40f6281f0a96028a122f35997103fda4269c53ede3ded

Sharing

Copy URL Twitter E-mail

General

Target

9536fd9f55c7daa6e8a40f6281f0a96028a122f35997103fda4269c53ede3ded
Size

116KB
MD5

52e3e4be7d8817cd2e140ffac34e4da0
SHA1

2364d48f869886dab4c8a351db37f9d6e3678149
SHA256

9536fd9f55c7daa6e8a40f6281f0a96028a122f35997103fda4269c53ede3ded
SHA512

fd6c58847c24e3c47ba9dcfbd883ab2cf82d0a0a5391fa102390306a77b66b56c34392bd1e7eebb6bb1ea2c93baf60e2eb1b983981de319944e4b6614dd6cf6d
SSDEEP

768:W/zS5VtWOVEXFuVH2NYMAJwKbgJ8VJW6FeR6GOrbQV0Mtu5XKi1Pd8UwB:W/za6OdDJwKbgJ8VJWFlOHQvu5XKi1G/

Score

N/A

Malware Config

Signatures

Files

9536fd9f55c7daa6e8a40f6281f0a96028a122f35997103fda4269c53ede3ded
.exe windows x86

a26ef61b8f62e78405c8b8c8f5013061

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZSeek
LZOpenFileA
LZClose
LZRead

version

VerQueryValueA

kernel32

lstrcpyA
_lread
_lclose
GetFullPathNameA
lstrcmpA
WideCharToMultiByte
GetLastError
IsDBCSLeadByte
LocalAlloc
lstrcatA
LocalFree
LoadResource
LockResource
FreeResource
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrlenA
MulDiv
Sleep
GetVersion
GetModuleHandleA
GetStartupInfoA
OpenFile
_llseek

user32

SendMessageA
ScrollWindow
GetClientRect
PostMessageA
GetWindowPlacement
SetScrollInfo
InvalidateRect
LoadCursorA
SetCursor
ShowWindow
UpdateWindow
LoadStringA
GetWindowDC
ReleaseDC
GetDesktopWindow
wsprintfA
GetSysColor
FillRect
SetWindowTextA
DestroyIcon
MoveWindow
GetDlgItem
LoadIconA

gdi32

GetDeviceCaps
SetTextColor
CreateSolidBrush
EndDoc
EndPage
AddFontResourceA
StartPage
StartDocA
CreateFontA
DeleteObject
SelectObject
GetTextMetricsA
CreateRectRgn
LineTo
MoveToEx
CreatePen
GetTextExtentPointA
TextOutA
GetTextExtentPoint32A
SetTextAlign
CreateFontIndirectA
SetMapMode
RemoveFontResourceA
GetFontData
EnumFontFamiliesA

mfc30

ord1977
ord467
ord1138
ord1567
ord1516
ord1069
ord341
ord913
ord1038
ord598
ord474
ord824
ord1604
ord1877
ord1645
ord288
ord389
ord348
ord802
ord447
ord470
ord405
ord1254
ord1569
ord821
ord893
ord1806
ord2146
ord1832
ord369
ord1222
ord1174
ord1202
ord636
ord973
ord579
ord597
ord642
ord1235
ord1198
ord460
ord366
ord881
ord1368
ord1941
ord2058
ord1986
ord468
ord367
ord385
ord1041
ord571
ord1251
ord2128
ord1257
ord928
ord908
ord1920
ord1299
ord550
ord1781
ord1345
ord1837
ord874
ord1111
ord1828
ord331
ord982
ord1599
ord1821
ord1915
ord1102
ord1506
ord1103
ord1078
ord1704
ord866
ord1478
ord2129
ord656
ord384
ord2003
ord1413
ord1392
ord438
ord1183
ord399
ord280
ord2037
ord1488
ord1471
ord910
ord1814
ord1479
ord869
ord1344
ord1796
ord1272
ord2127
ord1823
ord1656

msvcrt20

_controlfp
__p__fmode
__p__commode
_except_handler3
__getmainargs
_initterm
__p__acmdln
exit
_XcptFilter
_exit
_onexit
__dllonexit
?terminate@@YAXXZ
_CxxThrowException
_strdup
free
_strnicmp
??2@YAPAXI@Z
??3@YAXPAX@Z
_stat
sprintf
__CxxFrameHandler

Sections

.text
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.euulm
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a26ef61b8f62e78405c8b8c8f5013061

Headers

File Characteristics

Imports

lz32

version

kernel32

user32

gdi32

mfc30

msvcrt20

Sections

.text Size: 20KB - Virtual size: 17KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 644B

.idata Size: 4KB - Virtual size: 3KB

.rsrc Size: 8KB - Virtual size: 5KB

.euulm Size: 72KB - Virtual size: 72KB

.text
Size: 20KB - Virtual size: 17KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 644B

.idata
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 8KB - Virtual size: 5KB

.euulm
Size: 72KB - Virtual size: 72KB