993dc6f133646045c1141901dfc0b400ddee95b28aeb75b35de5b76c6e3c3970

Sharing

Copy URL Twitter E-mail

General

Target

993dc6f133646045c1141901dfc0b400ddee95b28aeb75b35de5b76c6e3c3970
Size

165KB
MD5

80edc0d425ae10a9a7d1b13567b45ca0
SHA1

3344832d0c54aec6acf9e2e996bcd518664e0f12
SHA256

993dc6f133646045c1141901dfc0b400ddee95b28aeb75b35de5b76c6e3c3970
SHA512

64df7065f4a45e97c504a9106da6d0a075131a4e390b1739baf273121e895d452c534d24ae15ae1b3d136aebf6d6bbd67cfe5a46dad8d4f18af9e3374ba0bb84
SSDEEP

3072:O/o16zqZ2xKZlNunaxI+JKs+0AnjlDaaN0m7VDaSldhELTLIvKxlKCE2Z:mo1cqenWD+J5xSwDak20vKxBr

Score

N/A

Malware Config

Signatures

Files

993dc6f133646045c1141901dfc0b400ddee95b28aeb75b35de5b76c6e3c3970
.exe windows x86

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeClipboardChain
EnableMenuItem
PeekMessageA
InSendMessageEx
SetWindowLongA
TrackPopupMenuEx
IsCharAlphaNumericW
GetDC
GetIconInfo
MessageBeep
RemovePropW
DestroyAcceleratorTable
ShowOwnedPopups
CharToOemBuffA
IsCharAlphaNumericA
GetWindowThreadProcessId
LoadMenuW
OpenWindowStationA
OffsetRect
DdeAddData
CreateDialogParamA
GetClipboardOwner
AdjustWindowRectEx
FindWindowExW
GetMenuStringA
SetWindowsHookExA
DispatchMessageW
OemToCharBuffA
CheckMenuItem
DefWindowProcW
CallWindowProcW
DialogBoxIndirectParamA
ShowWindow
EnumWindowStationsW
CharUpperW
MapVirtualKeyExW
CharUpperBuffA
RegisterClipboardFormatA
CharLowerW
GetClassInfoExW
SetMenuItemBitmaps
DialogBoxIndirectParamW
MapVirtualKeyW
InvertRect
GetDesktopWindow
CheckDlgButton
DdeQueryStringA
SendMessageW
SetMenuItemInfoW
EndTask

gdi32

GetFontData
GetTextAlign
GetTextExtentPointA
CreateRoundRectRgn
GetDIBits
SetPaletteEntries

ntdll

_aulldiv
_allshl
_allmul

Exports

Exports

?FoodActaMautglopThudCloyechtaa@@YGXPCJU_SECURITY_DESCRIPTOR@@UProfVote@@PC_J@Z

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Khetby
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dugen
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.moswo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rhospa
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Everid
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pupba
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Cohooy
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bosen
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

ntdll

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.Khetby Size: 6KB - Virtual size: 6KB

.dugen Size: 4KB - Virtual size: 4KB

.moswo Size: 4KB - Virtual size: 4KB

.Rhospa Size: 7KB - Virtual size: 7KB

.Everid Size: 5KB - Virtual size: 5KB

.data Size: 10KB - Virtual size: 10KB

.pupba Size: 17KB - Virtual size: 16KB

.Cohooy Size: 11KB - Virtual size: 10KB

.edata Size: 11KB - Virtual size: 10KB

.bosen Size: 8KB - Virtual size: 8KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 60KB - Virtual size: 59KB

.Khetby
Size: 6KB - Virtual size: 6KB

.dugen
Size: 4KB - Virtual size: 4KB

.moswo
Size: 4KB - Virtual size: 4KB

.Rhospa
Size: 7KB - Virtual size: 7KB

.Everid
Size: 5KB - Virtual size: 5KB

.data
Size: 10KB - Virtual size: 10KB

.pupba
Size: 17KB - Virtual size: 16KB

.Cohooy
Size: 11KB - Virtual size: 10KB

.edata
Size: 11KB - Virtual size: 10KB

.bosen
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 17KB - Virtual size: 17KB