13763f5bc7d2b147dfe1a86a84b21faabcfddeda14e8f81eae7763057f13bb14

Sharing

Copy URL Twitter E-mail

General

Target

13763f5bc7d2b147dfe1a86a84b21faabcfddeda14e8f81eae7763057f13bb14
Size

280KB
MD5

05ae54fb5c66c4231e2bfe4c0b761ca1
SHA1

116b5b2fd6f069ac6a03f0362d7bb721f82df6dc
SHA256

13763f5bc7d2b147dfe1a86a84b21faabcfddeda14e8f81eae7763057f13bb14
SHA512

a87a90fea322e9610fe9f5dbc07c223551a3da7d91ddc8021bc0cdd15567b006cf3cb9ec7f53d43e8a85b9a2db0b99db518ef3310f28dd92bd3818f92c606e4b
SSDEEP

6144:zc7cx35ey9xkyWb5tsgSJI9uMCSur88ZurCOWa6NDagbEvLd:zcgx35xxkymSe9NCtzuKjFaXv

Score

N/A

Malware Config

Signatures

Files

13763f5bc7d2b147dfe1a86a84b21faabcfddeda14e8f81eae7763057f13bb14
.exe windows x86

767d9a80ecb4ffea93db00ff8c4955c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ReplaceTextA
ChooseColorA
GetOpenFileNameW
PrintDlgW
PrintDlgA

ole32

CoGetObject
GetRunningObjectTable
CoGetStandardMarshal

kernel32

GetLastError
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
HeapAlloc
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapFree
CloseHandle
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
TerminateProcess
GetCurrentProcess
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
RtlUnwind
MultiByteToWideChar
ReadFile
HeapCreate
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
Sleep
GetProcAddress
GetModuleHandleW
ExitProcess
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
SetStdHandle
FlushFileBuffers
SetFilePointer
WriteConsoleW
IsProcessorFeaturePresent
CreateFileA
LoadLibraryW
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
CreateFileW
GetStringTypeW
SetEndOfFile
GetProcessHeap
HeapSize
LCMapStringW

Sections

.text
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 210KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

767d9a80ecb4ffea93db00ff8c4955c0

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

ole32

kernel32

Sections

.text Size: 38KB - Virtual size: 37KB

.rdata Size: 9KB - Virtual size: 9KB

.data Size: 18KB - Virtual size: 26KB

.rsrc Size: 210KB - Virtual size: 212KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 38KB - Virtual size: 37KB

.rdata
Size: 9KB - Virtual size: 9KB

.data
Size: 18KB - Virtual size: 26KB

.rsrc
Size: 210KB - Virtual size: 212KB

.reloc
Size: 3KB - Virtual size: 3KB