7d5fa3ba727bfca7d21399c694f4b574774d1d95c6a852003dc70cdfa3c1752a

Sharing

Copy URL Twitter E-mail

General

Target

7d5fa3ba727bfca7d21399c694f4b574774d1d95c6a852003dc70cdfa3c1752a
Size

93KB
MD5

01aa6b057a5ba5d5f6b94f463e1e3b90
SHA1

9339e6ef0a25c8949963099a56621dfe9c86520a
SHA256

7d5fa3ba727bfca7d21399c694f4b574774d1d95c6a852003dc70cdfa3c1752a
SHA512

48178d8591d1ed69ab2f5c42248ab199ae7ae76dfb8bc0a3c695cd18d7325aaac0b069b5f4c399167e9c6cf11db36cebe40f7a8415133cfbb9c15f1eaf6c0f15
SSDEEP

1536:SJgDTgEw13bLyvT2sv+p6RVkzQugIIKZDYkI2+UVm+cj3H/QECDOTt0/e:SK/gnl2T2IhpIIx2+mx+3HoECDmtP

Score

N/A

Malware Config

Signatures

Files

7d5fa3ba727bfca7d21399c694f4b574774d1d95c6a852003dc70cdfa3c1752a
.exe windows x86

07d4f0b33a836ddbe4105bbcc725f5ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessagePos
AppendMenuA
IsCharUpperW
GetClassLongW
RegisterClipboardFormatW
GetForegroundWindow

shlwapi

StrSpnA
StrRChrW
StrStrA
PathUndecorateW
UrlIsW

kernel32

OpenMutexW

Exports

Exports

DownloadRunExeId
DownloadRunExeUrl
DownloadRunModId
DownloadUpdateMain
Inject32End
Inject32Normal
Inject32Start
InjectApcRoutine
InjectNormRoutine
SendLogs
WriteConfigString
?GdiOutput@@YGXUKonstep99@RSV
?LockingPick@@YGXUKonstep99@RSV

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.port
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wpe
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.call
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.same
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.fame
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07d4f0b33a836ddbe4105bbcc725f5ab

Headers

File Characteristics

Imports

user32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.port Size: 512B - Virtual size: 128B

.wpe Size: 17KB - Virtual size: 16KB

.data Size: 7KB - Virtual size: 7KB

.call Size: 8KB - Virtual size: 7KB

.same Size: 8KB - Virtual size: 7KB

.fame Size: 16KB - Virtual size: 15KB

.reloc Size: 3KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 45KB

.text
Size: 24KB - Virtual size: 23KB

.port
Size: 512B - Virtual size: 128B

.wpe
Size: 17KB - Virtual size: 16KB

.data
Size: 7KB - Virtual size: 7KB

.call
Size: 8KB - Virtual size: 7KB

.same
Size: 8KB - Virtual size: 7KB

.fame
Size: 16KB - Virtual size: 15KB

.reloc
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 45KB