b915fb0b3d79053d327984795a4ce0825e69b083a59522757d23eaee5299bed6

Sharing

Copy URL

Twitter E-mail

General

Target

b915fb0b3d79053d327984795a4ce0825e69b083a59522757d23eaee5299bed6
Size

4.3MB
MD5

41140342d06838ae0fb55cbdfd01f8c2
SHA1

ee9b0d2bcfa3634a04911e26a20871a5ef88ccb0
SHA256

b915fb0b3d79053d327984795a4ce0825e69b083a59522757d23eaee5299bed6
SHA512

472562087e96fac808a82b325633386ed8c12b7d3e12a56582143f693691f4b95ad3bbd6d3feb54fe9378c2b9d3f0c4fb377651e0168b7c324a9e9e493bbd1de
SSDEEP

98304:8PZB0m7U6DIWRh5DnAQVqQRw6GxblB7+2Cv:wfwY1RzAQVqQRbsbv7+2Cv

Score

N/A

Malware Config

Signatures

Files

b915fb0b3d79053d327984795a4ce0825e69b083a59522757d23eaee5299bed6
.exe windows x86

1532cc6a6c2f89cb8e12d17273735f49

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlEscapeW

gdiplus

GdipGetImagePalette

msimg32

AlphaBlend

comctl32

_TrackMouseEvent

ws2_32

inet_ntoa

version

GetFileVersionInfoSizeW

imm32

ImmAssociateContext

iphlpapi

GetNetworkParams

ui

?SetTimer@CPaintManagerUI@DuiLib@@QAE_NPAVCControlUI@2@II@Z

kernel32

LoadLibraryA

user32

GetFocus

gdi32

CreatePen

comdlg32

GetOpenFileNameW

advapi32

RegQueryValueExW

shell32

ord165

ole32

CoUninitialize

oleaut32

VarUI4FromStr

wininet

InternetSetCookieW

msvcrt

strncpy

psapi

GetMappedFileNameW

Exports

Exports

?FreeUIAppModule@@YAXXZ
?GetUIAppModule@@YAPAUIModule@PPS@@XZ

Sections

.text
Size: 1.5MB - Virtual size: 4.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sedata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1532cc6a6c2f89cb8e12d17273735f49

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

gdiplus

msimg32

comctl32

ws2_32

version

imm32

iphlpapi

ui

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

wininet

msvcrt

psapi

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 4.9MB

.sedata Size: 1.4MB - Virtual size: 1.4MB

.idata Size: 1KB - Virtual size: 4KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.sedata Size: 4KB - Virtual size: 4KB

.text
Size: 1.5MB - Virtual size: 4.9MB

.sedata
Size: 1.4MB - Virtual size: 1.4MB

.idata
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.sedata
Size: 4KB - Virtual size: 4KB