f6d9b716d37e050c71a9d9947bdc80f267492586b61973c20742962118c29293

Sharing

Copy URL Twitter E-mail

General

Target

f6d9b716d37e050c71a9d9947bdc80f267492586b61973c20742962118c29293
Size

214KB
MD5

0943cfa2e34e805ea90e203803c3f050
SHA1

e07110fcab1ff9ece67723d775cc63e611f8d8ae
SHA256

f6d9b716d37e050c71a9d9947bdc80f267492586b61973c20742962118c29293
SHA512

6a8a98afce116133022abb1d0fb3899e0c08a05be8fa4210303e2e051cc3150256950f7a054ea02c2dc5e01f310e44c13c204a035cfa71809c42e426fcc1c94e
SSDEEP

1536:w9yxlqP21WSh7GjMOsQwx/ulwiC0QuTnA7YfGKmQ3rO4iV8pxw1YF2U:wc621xtUMOsQwx/ulC0Qb8O387w1z

Score

N/A

Malware Config

Signatures

Files

f6d9b716d37e050c71a9d9947bdc80f267492586b61973c20742962118c29293
.exe windows x86

940150ef2d1bba1808aed523118d0048

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

PaintDesktop
TranslateAcceleratorW
EnumDisplaySettingsExW
ScreenToClient
WINNLSGetEnableStatus
MessageBoxExW
SetCaretBlinkTime
PostThreadMessageA
GetKeyState
mouse_event
EnableScrollBar
IMPQueryIMEW
GetDlgItemTextA
ModifyMenuA
SetWindowTextA
PostThreadMessageA
TrackPopupMenuEx
BringWindowToTop
CloseWindow
WINNLSEnableIME
RegisterClassExW
CallNextHookEx
DdeCmpStringHandles
TrackMouseEvent
SetWinEventHook
ShowCaret
GetWindowRgn
UnhookWindowsHookEx
TranslateAcceleratorA
EnumClipboardFormats
CharToOemW
FindWindowExA
WINNLSGetEnableStatus

kernel32

WaitCommEvent
FileTimeToSystemTime
GetCommMask
GetPrivateProfileSectionNamesA
TlsGetValue
BuildCommDCBW
SetNamedPipeHandleState
TlsGetValue
TransactNamedPipe
UnmapViewOfFile
LocalFlags
GetBinaryTypeA
GetSystemDirectoryA
GetProcessShutdownParameters
GetThreadTimes
GlobalAlloc
GetProcessShutdownParameters
GetCurrentProcess
GetProcessShutdownParameters
EscapeCommFunction
WritePrivateProfileSectionA
lstrcpyW
LocalFlags
GetThreadTimes
lstrcmpW
LocalFree
GetProcessAffinityMask
SetLocaleInfoW
GetProcessShutdownParameters
Thread32Next
SetConsoleCursor
GetBinaryTypeA
GetBinaryTypeA
CompareFileTime
GetCurrentProcessId
GetCurrentDirectoryA
FindCloseChangeNotification
CreateDirectoryW

Sections

.text
Size: 203KB - Virtual size: 236KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

940150ef2d1bba1808aed523118d0048

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 203KB - Virtual size: 236KB

.code Size: 2KB - Virtual size: 4KB

.code Size: 1024B - Virtual size: 4KB

.code Size: 4KB - Virtual size: 8KB

.rsrc Size: 1KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 4KB

.text
Size: 203KB - Virtual size: 236KB

.code
Size: 2KB - Virtual size: 4KB

.code
Size: 1024B - Virtual size: 4KB

.code
Size: 4KB - Virtual size: 8KB

.rsrc
Size: 1KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 4KB