eb028f85e5f2eb05a2804e36d26a0902389d994243b3ac9af7727df754ed4fab

Sharing

Copy URL Twitter E-mail

General

Target

eb028f85e5f2eb05a2804e36d26a0902389d994243b3ac9af7727df754ed4fab
Size

274KB
MD5

83b791225a589859c74983b3308d80a0
SHA1

12a274f07871891eb785fc3cc70e67f1be5ef66c
SHA256

eb028f85e5f2eb05a2804e36d26a0902389d994243b3ac9af7727df754ed4fab
SHA512

d26dd48dc4bc1e76951742ac43bc91ac29a2167a5295d62d5caac2309075ca5e10e93644945213ffb73b7560039561ee037982fe5fb4add41052dfb6266769f6
SSDEEP

6144:YYQ2cMJ4y/bx/Kb4ZPMf2MSpdj/5wFhyy:TImbx/64ZPM+75Cy

Score

N/A

Malware Config

Signatures

Files

eb028f85e5f2eb05a2804e36d26a0902389d994243b3ac9af7727df754ed4fab
.exe windows x86

e75aec76525adbac888e3c60f16f7124

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Draw
ImageList_GetIconSize
DestroyPropertySheetPage

shlwapi

StrToIntW
PathSkipRootA
PathGetCharTypeA
PathIsURLW

kernel32

lstrcpyA
EnumSystemCodePagesW
DebugActiveProcess
lstrlenA
SetEnvironmentVariableW
GetTickCount
IsBadReadPtr
GetSystemDirectoryA
GetProfileIntA
GetStartupInfoA
HeapSize

user32

IsCharUpperA
EqualRect
MessageBoxW
GetNextDlgTabItem
DrawTextA
LoadBitmapA
LoadIconA
wsprintfA
FindWindowExA
BeginPaint
GetScrollRange
CharToOemW
GetDC
GetCursorPos
GetKeyboardLayout
LoadMenuW
PeekMessageA
GetClassNameW
EmptyClipboard
SetMenuDefaultItem
CharUpperW
IsCharAlphaNumericW

gdi32

GetBitmapBits
SetBitmapBits
GetLayout
GetTextExtentPoint32W
GetEnhMetaFileBits
CreateEnhMetaFileA
SetTextColor
GetDeviceCaps
GetDIBits
CreateDCA
CreateDCW
EnumFontFamiliesExA
Rectangle
GetMapMode
ExtTextOutW
Ellipse
GetCharWidth32W
EnumFontFamiliesA
GetNearestPaletteIndex
IntersectClipRect
OffsetViewportOrgEx
CloseEnhMetaFile
CreateEnhMetaFileW

Exports

Exports

?SectionOutput@@YGGPAG@Z

Sections

.crt
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e75aec76525adbac888e3c60f16f7124

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.crt Size: 1024B - Virtual size: 1000B

.text Size: 19KB - Virtual size: 18KB

.rdata Size: 1024B - Virtual size: 1000B

.data Size: 248KB - Virtual size: 248KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.crt
Size: 1024B - Virtual size: 1000B

.text
Size: 19KB - Virtual size: 18KB

.rdata
Size: 1024B - Virtual size: 1000B

.data
Size: 248KB - Virtual size: 248KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB