c7bbc51139718625f441b1886eabc06264c21ef054ddee4a8ca32bcd16353fcf

Sharing

Copy URL Twitter E-mail

General

Target

c7bbc51139718625f441b1886eabc06264c21ef054ddee4a8ca32bcd16353fcf
Size

332KB
MD5

0e490a57e8e5ea2f49f2c3ca5ea17030
SHA1

a8b5b5f5ff063af21be9171c2cb9cc89c673c239
SHA256

c7bbc51139718625f441b1886eabc06264c21ef054ddee4a8ca32bcd16353fcf
SHA512

37f8b2b5c1b32946b6ea4d0bcde5084599f11556b5c97ae6a793f4f553e30adee833f895b6ebc32d1c1941962f166c92d64520cd5e1f0fd9c412c50396b147cc
SSDEEP

6144:Q6uUSrohKJrS4O+lbzQd8slUishyri9qGfaCkA6bZdYAzWbdGtXQBpoF2p:FbSrxXO+pznSBoyyqma46bIAzWZ+QA0

Score

N/A

Malware Config

Signatures

Files

c7bbc51139718625f441b1886eabc06264c21ef054ddee4a8ca32bcd16353fcf
.exe windows x86

195e9ea7790af4893113e9d4ed0132c9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetImageCount
ImageList_Destroy

shlwapi

StrRChrIA
ord29
StrRStrIW
PathIsSameRootW

kernel32

lstrcatA
ReleaseSemaphore
IsDBCSLeadByteEx
GetLongPathNameA
FindClose
ResetEvent
GetExitCodeThread
lstrcmpiW
SetFileAttributesW
lstrcpyA
ExpandEnvironmentStringsW
IsDBCSLeadByte
VerifyVersionInfoA
LoadLibraryW
GetVolumePathNameW
lstrlenA
GetSystemDirectoryA
UnmapViewOfFile
GetUserDefaultLCID

user32

PeekMessageW
ShowCursor
CharToOemW
FindWindowExA
MessageBeep
LoadIconA
GetDlgItemInt
DdeInitializeW
ClientToScreen
SendMessageTimeoutA
IsCharLowerW
CreateDialogParamW
GetActiveWindow
ShowScrollBar
PostThreadMessageW
OpenClipboard
AllowSetForegroundWindow
TranslateMDISysAccel
GetMessagePos
GetWindowThreadProcessId
EndDialog
SetWindowsHookExW

gdi32

BeginPath
EndPage
PlayMetaFile
CreateDIBSection
GetDIBits
RemoveFontResourceW
SetPixel
CreatePenIndirect
CombineRgn
EndPath
GetCharWidth32A
IntersectClipRect

Exports

Exports

?ErrorCommon@@YGEPAG@Z

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 277KB - Virtual size: 289KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

195e9ea7790af4893113e9d4ed0132c9

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

shlwapi

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 277KB - Virtual size: 289KB

.rdata Size: 20KB - Virtual size: 19KB

.rsrc Size: 1024B - Virtual size: 772B

.data Size: 10KB - Virtual size: 9KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 277KB - Virtual size: 289KB

.rdata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 1024B - Virtual size: 772B

.data
Size: 10KB - Virtual size: 9KB

.reloc
Size: 2KB - Virtual size: 2KB