f4b449dba9cee71cec08311fa74d1b4b4d45f9a1d496a380beadeeab2351e816

Sharing

Copy URL Twitter E-mail

General

Target

f4b449dba9cee71cec08311fa74d1b4b4d45f9a1d496a380beadeeab2351e816
Size

52KB
MD5

0e844e233bee3b5c07504c8b6f64a876
SHA1

40c6abf5c9a354dfdaaa46ba694f6396106c890e
SHA256

f4b449dba9cee71cec08311fa74d1b4b4d45f9a1d496a380beadeeab2351e816
SHA512

063ac60f5c1bccebb8fa8c889c4c45382dbe9a65bca5ed602d7fc500377a8c2abbeb196ee57ebb44a0a87be1e5df260c5d2bfd62f37442703c88d9d2cbcc7152
SSDEEP

1536:bQnkywmztZAgpDfTJf7a9BcXQCh1kQsw:MFZAwLJfm9BmZLP

Score

N/A

Malware Config

Signatures

Files

f4b449dba9cee71cec08311fa74d1b4b4d45f9a1d496a380beadeeab2351e816
.exe windows x86

532261d7e11760638dc1e3455935c571

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetWindowsDirectoryW
lstrcatW
CreateFileW
GetStartupInfoW
WriteFile
GetVersionExA
GetProcAddress
GetModuleHandleA
GetCommandLineA
GetProcessHeap
ExitProcess

user32

DestroyAcceleratorTable
DestroyIcon
DialogBoxParamW
DispatchMessageW
DrawFocusRect
DrawIconEx
DrawTextExW
DrawTextW
EnableWindow
EndDeferWindowPos
EndDialog
EndPaint
FindWindowExW
FrameRect
GetClassInfoW
GetClassNameW
GetDC
GetDlgItem
GetFocus
GetForegroundWindow
GetIconInfo
GetKeyState
GetLastActivePopup
GetMessageW
GetMonitorInfoW
GetParent
GetPropW
GetSysColor
GetSystemMetrics
GetWindowLongW
GetWindowRect
GetWindowTextLengthW
GetWindowTextW
DeferWindowPos
IntersectRect
InvalidateRect
IsDlgButtonChecked
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
LoadAcceleratorsW
LoadCursorW
LoadImageW
LoadStringW
MapDialogRect
MessageBeep
MessageBoxIndirectW
MessageBoxW
MonitorFromRect
MsgWaitForMultipleObjects
OffsetRect
PeekMessageW
PostMessageW
PostQuitMessage
PostThreadMessageW
PtInRect
RegisterClassExW
RegisterClassW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemovePropW
SendDlgItemMessageW
SendMessageW
SendNotifyMessageW
SetDlgItemTextW
SetFocus
SetPropW
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
TranslateAcceleratorW
TranslateMessage
UpdateWindow
WinHelpW
wsprintfW
CreateWindowExW
CopyRect
CopyImage
CopyIcon
CharUpperBuffW
CharNextW
CallWindowProcW
BeginPaint
BeginDeferWindowPos
GetWindowThreadProcessId

advapi32

RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExW
RegOpenKeyA
RegCloseKey

Sections

.text2
Size: 512B - Virtual size: 10B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text3
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

532261d7e11760638dc1e3455935c571

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text2 Size: 512B - Virtual size: 10B

.text Size: 28KB - Virtual size: 28KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 1KB - Virtual size: 1KB

.text3 Size: 512B - Virtual size: 100B

.rsrc Size: 17KB - Virtual size: 17KB

.text2
Size: 512B - Virtual size: 10B

.text
Size: 28KB - Virtual size: 28KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 1KB - Virtual size: 1KB

.text3
Size: 512B - Virtual size: 100B

.rsrc
Size: 17KB - Virtual size: 17KB