a81eefef4c46c59b42599dca6398517d1b7488815fdc03c5057589b58e958a84

Sharing

Copy URL

Twitter E-mail

General

Target

a81eefef4c46c59b42599dca6398517d1b7488815fdc03c5057589b58e958a84
Size

150KB
MD5

0ffeab0900d674e98f1754cdc2ee6381
SHA1

49c257a7cd43b94993dd54f869a02e7b48527f30
SHA256

a81eefef4c46c59b42599dca6398517d1b7488815fdc03c5057589b58e958a84
SHA512

b99e2c1c170902c8873a137f227bcc6a0732c7d86913c8ad6059dc0ef66bbcce64670238df51701890b8323eb6a4c40bf64e843bcdbfc676d5f775a91d314dbc
SSDEEP

3072:GGr0QrnE79KpJiL8LodmZArLkVZ50AX+2vJX/ZsGflmJmt1m2TJ:T0QrnE7y0Liu4eIHi7sZdfqmtciJ

Score

N/A

Malware Config

Signatures

Files

a81eefef4c46c59b42599dca6398517d1b7488815fdc03c5057589b58e958a84
.exe windows x86

07db121f67ed57e38bd901c1b690e97c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

Process32Next
GetProcessWorkingSetSize
CompareFileTime
FreeLibrary
GetCurrentProcessId
FindFirstChangeNotificationW
Heap32ListFirst
CreateMailslotW
GetModuleHandleA
GetLastError
ReadConsoleInputW
GetConsoleWindow
GetAtomNameW
FreeEnvironmentStringsW
LoadLibraryA
CreateTimerQueue
WaitForMultipleObjects
EnumTimeFormatsW
GlobalReAlloc
CopyFileW
GetProfileStringW
GetCommandLineW
GetStartupInfoA
ProcessIdToSessionId
WriteFileEx
RtlFillMemory
GetOEMCP
GetStringTypeW
GetLocaleInfoW

msvcrt

_mbctohira
_wstrdate
exit
_cwscanf
_acmdln
__setusermatherr
vwprintf
__getmainargs
_wcsdup
_exit
_controlfp
_wexecvpe
_fstat64
_spawnv
__p__fmode
_wsopen
_seterrormode
_except_handler3
_strnset
__set_app_type
strlen
_wcsnset
mktime
_wfullpath
_initterm
_XcptFilter
_ismbcdigit
_ungetch
_adjust_fdiv
__p__commode

user32

InsertMenuItemW
GetLastInputInfo
GetCursor
GetUserObjectInformationA
GetThreadDesktop
SetSystemCursor
DefMDIChildProcA
AppendMenuA
GetAncestor
OemToCharA
GetWindowModuleFileNameA
DialogBoxIndirectParamA
DrawStateW
DlgDirSelectExA
GetScrollRange
DlgDirListComboBoxW
EnumPropsExW
GetClipboardData
WindowFromPoint
GetUpdateRgn
IsDialogMessageA
EnableScrollBar
IsClipboardFormatAvailable
SetWindowPlacement

gdi32

GetCharacterPlacementA
GetGlyphOutlineA
UpdateICMRegKeyA
GdiPlayDCScript
CreatePenIndirect
GdiPlayPageEMF
GetKerningPairsA
ExtCreateRegion
GetTextExtentPointW
StartDocW
CreateFontW
GdiGetPageCount
ExtSelectClipRgn
EnumFontFamiliesExW
GetColorAdjustment
EnumFontsW
GetKerningPairsW
GetBkMode
CreatePatternBrush
GdiArtificialDecrementDriver
SetICMMode
BitBlt

Sections

.text
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07db121f67ed57e38bd901c1b690e97c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Sections

.text Size: 86KB - Virtual size: 86KB

.rdata Size: 52KB - Virtual size: 52KB

.data Size: 512B - Virtual size: 80KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 86KB - Virtual size: 86KB

.rdata
Size: 52KB - Virtual size: 52KB

.data
Size: 512B - Virtual size: 80KB

.rsrc
Size: 8KB - Virtual size: 8KB