238caad27cdc0c3884470461aeadb5de09461daba62f7d711c1d6cb2829ee3e5

Sharing

Copy URL Twitter E-mail

General

Target

238caad27cdc0c3884470461aeadb5de09461daba62f7d711c1d6cb2829ee3e5
Size

165KB
MD5

82889e12a242c0c4473065b6c22bae30
SHA1

827980856513618d6aea09b477228cc105c2a6e2
SHA256

238caad27cdc0c3884470461aeadb5de09461daba62f7d711c1d6cb2829ee3e5
SHA512

dec9ed82b7c339cb6a3d94abd9fed738e98ca74eff4ef9cf69a72d7ae3a705d38b4bbd5c869020ea4c5672e71d2b36e5206f1bc17c5609e5653fcb5aabe71d02
SSDEEP

3072:Jcj0jR9mH/kgUoSUZk018RvV7c5iin2fJXERehn8YQzt4:Cj08kXoSKEhNc5iw2fREsF8ZC

Score

N/A

Malware Config

Signatures

Files

238caad27cdc0c3884470461aeadb5de09461daba62f7d711c1d6cb2829ee3e5
.exe windows x86

f7cfd9dfe88b37fd381679ee6a689523

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowsHookExA
CreateWindowExA
GetClipboardData
GetWindowLongW
OpenWindowStationA
DrawStateA
GetClientRect
CharNextA
OpenInputDesktop
LoadMenuA
LoadImageW
IsCharAlphaA
FillRect
CreateDialogParamA
ScreenToClient
MapVirtualKeyW
GetNextDlgGroupItem
GetSystemMetrics
GetMenuStringA
GetCapture
ActivateKeyboardLayout
InSendMessage
DialogBoxIndirectParamA
CreateWindowExW
IsWindow
GetClassLongW
GetGuiResources
CallWindowProcW
mouse_event
SetScrollInfo
SetProcessDefaultLayout
CheckDlgButton
DefWindowProcA
TranslateAcceleratorA
ReleaseDC
GetClassNameW
GetWindowLongA
InvalidateRect
TranslateMessage
IsDialogMessageA
CharLowerW
EnumWindowStationsA
MessageBeep
GetThreadDesktop
SendDlgItemMessageA
DestroyWindow
WinHelpW
OemToCharBuffA
UnionRect

gdi32

CreateFontIndirectA
TextOutA
PlayMetaFileRecord
GetTextMetricsW

ole32

CoInitialize

ntdll

_allshl
_allmul
_aulldiv

Exports

Exports

?BiletoadalaekivaDuradam@@YGGPCDPCIUtagBITMAP@@N@Z

Sections

.text
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rhospa
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Khetby
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bosen
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Cohooy
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7cfd9dfe88b37fd381679ee6a689523

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

ole32

ntdll

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 64KB

.data Size: 9KB - Virtual size: 9KB

.Rhospa Size: 11KB - Virtual size: 10KB

.edata Size: 13KB - Virtual size: 12KB

.Khetby Size: 16KB - Virtual size: 15KB

.bosen Size: 12KB - Virtual size: 11KB

.rsrc Size: 12KB - Virtual size: 11KB

.Cohooy Size: 16KB - Virtual size: 15KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 64KB - Virtual size: 64KB

.data
Size: 9KB - Virtual size: 9KB

.Rhospa
Size: 11KB - Virtual size: 10KB

.edata
Size: 13KB - Virtual size: 12KB

.Khetby
Size: 16KB - Virtual size: 15KB

.bosen
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 12KB - Virtual size: 11KB

.Cohooy
Size: 16KB - Virtual size: 15KB

.reloc
Size: 10KB - Virtual size: 9KB