d853bfc571ac49ae9563b5a8d54d2a3b5c90fcceafcda236ed7cf56d529f5a75

Sharing

Copy URL Twitter E-mail

General

Target

d853bfc571ac49ae9563b5a8d54d2a3b5c90fcceafcda236ed7cf56d529f5a75
Size

208KB
MD5

03b6ceec33f99909d425b97a83613700
SHA1

77f4a9d7686672f759459d4c31a78e53c56dcfc0
SHA256

d853bfc571ac49ae9563b5a8d54d2a3b5c90fcceafcda236ed7cf56d529f5a75
SHA512

9fd6c1a9a9b31379f562adeb7751d58a0d8e09894d8f613879ffa89a2790387e23dbe6cdb6896e58c70b9d08082ab2cbb3484b78f95ceb30ced878158883ea81
SSDEEP

3072:kflpuoKkni1Ns5tkPB6bzcXIU6QmHaphdDyf4g2fLWSRD4diMPDyvk:CfLnijs5tPceQm6ZDO6qQ

Score

N/A

Malware Config

Signatures

Files

d853bfc571ac49ae9563b5a8d54d2a3b5c90fcceafcda236ed7cf56d529f5a75
.exe windows x86

22c03cf01417454b3fd314b9b9c19f1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetSpecialFolderLocation

user32

GetActiveWindow
GetMenu
DefMDIChildProcA
DefWindowProcA
DeleteMenu
LoadCursorA

kernel32

FormatMessageA
VirtualAllocEx
GlobalFindAtomA
WriteFile
GetProcAddress
lstrcmpiA
GetVersion
FindClose
SetFilePointer
CreateFileA
GetCommandLineA
IsBadReadPtr
lstrcatA
LockResource
GetProcessHeap
VirtualQuery
LocalAlloc
ExitThread
GetModuleHandleA
VirtualAlloc
lstrcmpA
SetEvent
LoadLibraryExA
HeapDestroy
GetSystemDefaultLangID
SizeofResource
GetStdHandle
GetStartupInfoA
GetLocaleInfoA
GetEnvironmentStrings
GetStringTypeW
VirtualFree
FreeResource
ExitProcess
EnumCalendarInfoA
MulDiv
GetCPInfo
GetCommandLineW
LocalReAlloc
GetCurrentProcess
lstrlenA
GlobalDeleteAtom
LoadLibraryA
GetOEMCP
GetTickCount
SetErrorMode
GetCurrentThreadId
DeleteFileA
WideCharToMultiByte
GetLastError
MoveFileExA
ReadFile
SetLastError
CompareStringA

comdlg32

ChooseColorA
GetFileTitleA
FindTextA

Exports

Exports

QYwGp0B@12

Sections

CODE
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 7KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ipdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 76B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

22c03cf01417454b3fd314b9b9c19f1c

Headers

File Characteristics

Imports

shell32

user32

kernel32

comdlg32

Exports

Exports

Sections

CODE Size: 184KB - Virtual size: 184KB

DATA Size: 7KB - Virtual size: 59KB

.ipdata Size: 11KB - Virtual size: 10KB

.idata Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 76B

.rsrc Size: 1KB - Virtual size: 1KB

CODE
Size: 184KB - Virtual size: 184KB

DATA
Size: 7KB - Virtual size: 59KB

.ipdata
Size: 11KB - Virtual size: 10KB

.idata
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 76B

.rsrc
Size: 1KB - Virtual size: 1KB