8a7a20714f461eea4cb6c6f3a026a60ccc8634d66f36f764a1a3f265ba217720

Sharing

Copy URL Twitter E-mail

General

Target

8a7a20714f461eea4cb6c6f3a026a60ccc8634d66f36f764a1a3f265ba217720
Size

432KB
MD5

0c03224724998b88038ca07cd1c8d810
SHA1

681009fbd4d1a4ca4740fc387559b58cbef28ebb
SHA256

8a7a20714f461eea4cb6c6f3a026a60ccc8634d66f36f764a1a3f265ba217720
SHA512

ea8cabc296467ae0db57ecfd20bc0b7d9a92f83a74d95e6b4ecce2633748530717c735ee41f80b263a8ea38d8cbe22e2d964bd9d8ef518f99e1185ffdbfab8dd
SSDEEP

6144:C/wQ2hD91oxOAlIlnmQoO9ZcRCzK7/EKjTmvdk5fo3Wof7yyZ/FO54O5jee:skDTPlmRV6KvhiWof7TOtjee

Score

N/A

Malware Config

Signatures

Files

8a7a20714f461eea4cb6c6f3a026a60ccc8634d66f36f764a1a3f265ba217720
.exe windows x86

8b1be2d31f16d414ae5b979e27e08500

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

gdi32

EnumFontFamiliesA
LPtoDP
EngAcquireSemaphore
SelectClipPath
DeleteObject
SetStretchBltMode
GetSystemPaletteUse
GetTextFaceW
GetEnhMetaFileDescriptionW
EngStrokeAndFillPath
SelectObject
GdiDeleteSpoolFileHandle
CreateBrushIndirect

olepro32

DllUnregisterServer
OleIconToCursor
OleCreateFontIndirect
OleCreatePictureIndirect
OleCreatePropertyFrameIndirect
OleTranslateColor
OleLoadPicture
DllGetClassObject
OleCreatePropertyFrame
DllRegisterServer
DllCanUnloadNow

user32

RegisterClassExW
InvalidateRect
GetDC
GetMenu
SetWindowPos
GetProcessDefaultLayout
TranslateAcceleratorA
OemToCharA
GetCursorFrameInfo

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
lstrcmpA
CreateEventA
QueryPerformanceCounter
GetStartupInfoA
SetEvent
VirtualAlloc
GetSystemTime
GetModuleHandleA
GetVersionExA
GetCurrentThreadId
CloseHandle

msvcrt

__set_app_type
_adj_fdivr_m64
_adjust_fdiv
__p__fmode
?set_terminate@@YAP6AXXZP6AXXZ@Z
exit
mblen
__p__commode
_wfsopen
_fsopen
sqrt
_wexecl
_XcptFilter
_exit
__p__tzname
fread
_CIasin
_initterm
_CIcos
??4__non_rtti_object@@QAEAAV0@ABV0@@Z
_wexecle
_pipe
_getmbcp
__getmainargs
_mbsrchr
_acmdln
_fstat
strxfrm
swprintf
_tzset
_except_handler3
__setusermatherr
_controlfp

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 261KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b1be2d31f16d414ae5b979e27e08500

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

olepro32

user32

kernel32

msvcrt

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 162KB - Virtual size: 161KB

.data Size: 261KB - Virtual size: 260KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 644B

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 162KB - Virtual size: 161KB

.data
Size: 261KB - Virtual size: 260KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 644B