985f86b33616758efd8cae2f0bc78952ce7ebdd9a5cbce9202dedc031e01db1a

General

Target

985f86b33616758efd8cae2f0bc78952ce7ebdd9a5cbce9202dedc031e01db1a
Size

561KB
MD5

a00684d7321bea98ac14e7befb84c058
SHA1

25a5473e8384f6cd2b41e79b3742259f5f73276a
SHA256

985f86b33616758efd8cae2f0bc78952ce7ebdd9a5cbce9202dedc031e01db1a
SHA512

3ada27b9deec20f8d579feb5281e517a5365cdd4da169e2709d4ae2914552070f29d341a01eb6317e6ed4da1e82b3ddfc55ab939bcf2f39e985d0066d7d5c34d
SSDEEP

12288:Mi61YCKuX9I+wZlSrTzcmvrlyR4QwouFWYhNfFz+fyffL:MiEX9FwZlSXvhZouF7h7z+fCz

Score

N/A

Malware Config

Signatures

Files

985f86b33616758efd8cae2f0bc78952ce7ebdd9a5cbce9202dedc031e01db1a
.exe windows x86

1251755a3f655ac36dff4871d4ba863c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

clusapi

AddClusterResourceDependency

imm32

ImmSetCandidateWindow
ImmSetCompositionFontA
ImmCreateContext
ImmCreateIMCC
ImmCreateSoftKeyboard
ImmDestroyContext
ImmDestroyIMCC
ImmDestroySoftKeyboard
ImmDisableIME
ImmDisableIme
ImmDisableTextFrameService
ImmEnumInputContext
ImmEnumRegisterWordA
ImmEnumRegisterWordW
ImmEscapeA
ImmEscapeW
ImmFreeLayout
ImmGenerateMessage
ImmGetAppCompatFlags
ImmGetCandidateListA
ImmGetCandidateListCountA
ImmGetCandidateListCountW
ImmGetCandidateListW
ImmGetCandidateWindow
ImmGetCompositionFontA
ImmGetCompositionFontW
ImmGetCompositionStringA
ImmGetCompositionStringW
ImmGetCompositionWindow
ImmGetContext
ImmGetConversionListA

kernel32

GetTickCount
_lopen
GetWindowsDirectoryA
GetACP
OutputDebugStringA
AttachConsole
HeapReAlloc
HeapSetInformation
CreateRemoteThread
CreateSemaphoreA
LZRead

gdi32

CloseFigure
CloseMetaFile
ColorCorrectPalette
ColorMatchToTarget
CombineRgn
CombineTransform
CopyEnhMetaFileA
CopyEnhMetaFileW
CopyMetaFileA
CopyMetaFileW
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
CreateColorSpaceA
CreateColorSpaceW
CreateCompatibleBitmap
CreateCompatibleDC
CopyMetaFileA
CopyMetaFileW
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
CreateColorSpaceA
CreateColorSpaceW
CreateCompatibleBitmap
CreateCompatibleDC

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 266KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 521KB - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1251755a3f655ac36dff4871d4ba863c

Headers

File Characteristics

Imports

clusapi

imm32

kernel32

gdi32

Sections

.text Size: 24KB - Virtual size: 23KB

.data Size: 6KB - Virtual size: 266KB

.rsrc Size: 521KB - Virtual size: 524KB

.text
Size: 24KB - Virtual size: 23KB

.data
Size: 6KB - Virtual size: 266KB

.rsrc
Size: 521KB - Virtual size: 524KB