d044581820aa04d30cd9e3b2f99a774e514fa109749ae5421f1f0300451e5e42

Sharing

Copy URL

Twitter E-mail

General

Target

d044581820aa04d30cd9e3b2f99a774e514fa109749ae5421f1f0300451e5e42
Size

131KB
MD5

91d2a9d2b8bda23b59581a68e6979c4a
SHA1

a2b23740795d0d3c514fc7bf93d43a075f6cb216
SHA256

d044581820aa04d30cd9e3b2f99a774e514fa109749ae5421f1f0300451e5e42
SHA512

c6b65afb1448b24fd5d9b90457be77ef21e6febf820d577435878c43ac00345b0215f8f9246643fe1329a284d10b9093609b8f7f8e55e3a9de47c61fa4caf34a
SSDEEP

3072:aUPTYAMX9yCYRrs3oab59mF9T8NFMfgxr7:amYn9HxFkDT8Egx

Score

N/A

Malware Config

Signatures

Files

d044581820aa04d30cd9e3b2f99a774e514fa109749ae5421f1f0300451e5e42
.exe windows x86

1673d66c81439131ed6e95901ed3ad91

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetBkColor
LineTo

kernel32

lstrlenW
CreateThread
GetCurrentThreadId
GetProcAddress
HeapDestroy
GetModuleFileNameA
GetCurrentProcessId
GetDateFormatA
GetLocalTime
LoadLibraryExA
GetCommandLineW
LoadLibraryA
ExitThread
CreateFileA
GetFullPathNameA
FreeLibrary
VirtualAllocEx
GetVersionExA
FindClose
lstrcatA
HeapAlloc
ExitProcess
HeapFree

user32

PostQuitMessage
CallWindowProcA
DestroyCursor
SetWindowTextA
GetClientRect
TrackPopupMenu
ShowOwnedPopups
IsDialogMessageA
EndPaint
EnumThreadWindows
GetParent
MsgWaitForMultipleObjects
CreateIcon
DrawFrameControl
CharUpperA
LoadCursorA
InflateRect
GetCapture
RegisterClipboardFormatA
EnableWindow
GetPropA
EnableScrollBar
MapVirtualKeyA
CharNextA
SetForegroundWindow
GetWindowTextLengthA
EnumChildWindows
GetFocus
GetSubMenu
RemoveMenu
DrawTextA
GetWindowLongW
EnableMenuItem
LoadKeyboardLayoutA
ActivateKeyboardLayout
FillRect
IsWindowUnicode
GetScrollInfo
IsZoomed
CharLowerA
TranslateMessage
ChildWindowFromPoint
SetWindowLongA
FrameRect
WaitMessage
IsWindow
GetWindow
GetSystemMenu
GetMenu
GetWindowLongA
WindowFromPoint
wsprintfA
CharNextW
GetWindowPlacement
ScrollWindow
GetCursor
GetClassInfoA
DrawIcon
GetSystemMetrics
IsIconic
ReleaseDC
GetKeyState
GetWindowTextA

ole32

GetHGlobalFromStream
OleCreateStaticFromData
CoGetMalloc
CoReleaseMarshalData
StgCreateDocfileOnILockBytes

Exports

Exports

sO5Ll3
0bHPW_Vu
_Ki0kQtyQ3P
_48WAbFaD
jvSqg
BBhgK2f
982lKrH9mUtV2
mazlYYc_K
_dBN2e
_wuh0J
IbLF1WOgNN@8

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cadata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1673d66c81439131ed6e95901ed3ad91

Headers

File Characteristics

Imports

gdi32

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 10KB - Virtual size: 122KB

.data Size: 98KB - Virtual size: 97KB

.edata Size: 1KB - Virtual size: 1KB

.cadata Size: 1KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 10KB - Virtual size: 122KB

.data
Size: 98KB - Virtual size: 97KB

.edata
Size: 1KB - Virtual size: 1KB

.cadata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 8KB