4a28eecef74037b9a6152fb9ba5147296a4fc03226c04f4cfcc0a3a2aa1658c9

General

Target

4a28eecef74037b9a6152fb9ba5147296a4fc03226c04f4cfcc0a3a2aa1658c9
Size

192KB
MD5

050464ae365bef1b28b0a4f64421f222
SHA1

59991dc6540b07e071d7b51b8b76b2d9de035b55
SHA256

4a28eecef74037b9a6152fb9ba5147296a4fc03226c04f4cfcc0a3a2aa1658c9
SHA512

3e684eb4bba5fac639a3269a657142fe9c8de23de398e928c6b4f900e0b73168d4446b9d071967b3eb462b659032c40bd2d75e80298848455a1fcb07c497de14
SSDEEP

3072:jmkEGrOqppnIpMfdLuiy12BXFpCSkUvqoNkEH6un99lYCkKjaQq8GcF8om+sVd0R:jTVKSSpMfxy12BXFpCjEHenEjYCkOtrM

Score

N/A

Malware Config

Signatures

Files

4a28eecef74037b9a6152fb9ba5147296a4fc03226c04f4cfcc0a3a2aa1658c9
.exe windows x86

210532058bc6d072aa0893041110b849

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetCPInfo
HeapFree
HeapAlloc
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
WriteFile
GetStringTypeA
GetStringTypeW
GetLastError
ReadFile
MultiByteToWideChar
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
SetFilePointer
GetLocaleInfoW
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
CloseHandle

comctl32

PropertySheetW
FlatSB_GetScrollInfo
FlatSB_EnableScrollBar
_TrackMouseEvent
ImageList_EndDrag
ImageList_DragShowNolock
ImageList_Add
FlatSB_SetScrollProp
CreateStatusWindowW

shlwapi

IntlStrEqWorkerW

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

210532058bc6d072aa0893041110b849

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

comctl32

shlwapi

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 116KB - Virtual size: 115KB

.data Size: 32KB - Virtual size: 246KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 116KB - Virtual size: 115KB

.data
Size: 32KB - Virtual size: 246KB

.rsrc
Size: 3KB - Virtual size: 2KB