800d76f3259c21bdf7f63032d4d637a44b8a613f0f58a492163d902405e13614

General

Target

800d76f3259c21bdf7f63032d4d637a44b8a613f0f58a492163d902405e13614
Size

92KB
MD5

46f0c3504a55a744f1dcebe8744cb75c
SHA1

49b5a9fad3c6c7a24eb80517dbc54c1bb58cdc22
SHA256

800d76f3259c21bdf7f63032d4d637a44b8a613f0f58a492163d902405e13614
SHA512

9d7460aea8bc6be0e54b6a66f6ade53fb6fcdc5d67e50b82e808c01fda76bb0eaea645a0aacb96eefe520c7d7bcf7342b9bdd5d30e1e0d714be0a2b0bd095538
SSDEEP

1536:0MthZ2OJDD/Zkd1kXrEfnFhOsA+5j/9OnJ:VHXNkHkXrEtW+d9On

Score

N/A

Malware Config

Signatures

Files

800d76f3259c21bdf7f63032d4d637a44b8a613f0f58a492163d902405e13614
.exe windows x86

91a401d4a61758f0480a304236ab2596

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED

Imports

mapi32

BMAPIAddress

imm32

ImmSetCandidateWindow
ImmSetCompositionFontA
ImmCreateContext
ImmEscapeA
ImmEscapeW
ImmDestroyContext
ImmDestroyIMCC
ImmDestroySoftKeyboard
ImmDisableIME
ImmDisableIme
ImmDisableTextFrameService
ImmEnumInputContext
ImmEnumRegisterWordA
ImmEnumRegisterWordW
ImmEscapeA
ImmEscapeW
ImmDisableIME
ImmGenerateMessage
ImmGetAppCompatFlags
ImmGetCandidateListA
ImmGetCandidateListCountA
ImmGetCandidateListCountW
ImmGetCandidateListW
ImmGetCandidateWindow
ImmGetCompositionFontA
ImmGetCompositionFontW
ImmGetCompositionStringA
ImmGetCompositionStringW
ImmGetCompositionWindow
ImmGetContext
ImmGetConversionListA

kernel32

GetLastError
CreateFileA
GetWindowsDirectoryA
GetACP
OutputDebugStringW
AttachConsole
SetThreadLocale
HeapSetInformation
CreateRemoteThread
QueryDosDeviceA
LZRead

gdi32

CloseFigure
EnumFontFamiliesExA
ColorCorrectPalette
EqualRgn
CombineRgn
ExtFloodFill
ExtSelectClipRgn
ExtTextOutA
ExtTextOutW
CopyMetaFileW
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
GetCharWidthFloatW
GetCharWidthI
GetCharWidthInfo
GetCharWidthW
FillRgn
CopyMetaFileW
CreateBitmap
CreateBitmapIndirect
CreateBrushIndirect
CreateColorSpaceA
CreateColorSpaceW
CreateCompatibleBitmap
CreateCompatibleDC
CloseFigure
CloseFigure

Sections

.text
Size: 29KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 41KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91a401d4a61758f0480a304236ab2596

Headers

File Characteristics

Imports

mapi32

imm32

kernel32

gdi32

Sections

.text Size: 29KB - Virtual size: 31KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 41KB - Virtual size: 44KB

.text
Size: 29KB - Virtual size: 31KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 41KB - Virtual size: 44KB