2890bfff16618453cb41a7a173f066e8eb4f47119e48131af946642531d8d8f4

General

Target

2890bfff16618453cb41a7a173f066e8eb4f47119e48131af946642531d8d8f4
Size

172KB
MD5

a28e08037d57fa5ee0793c198bf8bfa0
SHA1

cfa8f6115087ad99a9578be19d8b3cdba284135d
SHA256

2890bfff16618453cb41a7a173f066e8eb4f47119e48131af946642531d8d8f4
SHA512

357d7107d9a287e30c2c64301bd174f3808fb9b4140b04343c2f6f403bb25ad89207d57f089e4e6e8078b129d732b85ae2c1b11b46a0d3984acd1f1bc12c43d9
SSDEEP

3072:gJhffjzgE5gWj6FD3YxcXVi+HXDkwD+3A9YH+EaKSmI1CBFzR1DIEb7kjmKU8:gnf7Z5gWuFzbVicD+3xeL1W19Xke

Score

N/A

Malware Config

Signatures

Files

2890bfff16618453cb41a7a173f066e8eb4f47119e48131af946642531d8d8f4
.exe windows x86

569d5a08fe29d06035a0e7721dbcf58c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GdiFlush
SelectObject
CreatePen
CreatePatternBrush
SetBkMode
DeleteObject
CreateBitmap
MoveToEx
GetStockObject
CreateDIBSection
CreateCompatibleDC
RestoreDC
ExtSelectClipRgn
CreateSolidBrush
GetTextMetricsW
SetViewportOrgEx
CreateFontIndirectW

kernel32

EnterCriticalSection
GetStartupInfoA
GetCurrentProcessId
GetSystemTimeAsFileTime
LeaveCriticalSection
InitializeCriticalSection
InterlockedExchange
GetModuleFileNameA
GetProcAddress
VirtualFree
LoadLibraryA
GetCurrentThreadId
SetLastError
TerminateProcess
SetUnhandledExceptionFilter
VirtualAlloc
CloseHandle
IsDebuggerPresent
MultiByteToWideChar
ReadFile
GetTickCount
WaitForSingleObject
ExitProcess
CreateFileW
UnhandledExceptionFilter
Sleep
QueryPerformanceCounter
GetModuleHandleA
GetCurrentProcess
SetFilePointer
InterlockedDecrement
FreeLibrary
GetACP

comdlg32

GetOpenFileNameA
GetOpenFileNameW
CommDlgExtendedError

ole32

OleLockRunning
HACCEL_UserSize
CoTaskMemFree
CoInitialize
CoCreateInstance

msvcrt

_adjust_fdiv
_except_handler3
exit
__p__commode
_unlock
__set_app_type
_lock
_initterm
fseek
__setusermatherr
__CxxFrameHandler
__getmainargs
strncmp
qsort
__p__fmode
wcsncat
_acmdln
free
_rmdir
isdigit
_exit
_controlfp
fgetc
_XcptFilter
fread
_onexit
_findnext

Sections

.text
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

569d5a08fe29d06035a0e7721dbcf58c

Headers

File Characteristics

Imports

gdi32

kernel32

comdlg32

ole32

msvcrt

Sections

.text Size: 160KB - Virtual size: 156KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 140B

.text
Size: 160KB - Virtual size: 156KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 140B