ab11483c7bc0f9c7cfed40689370903de8f99c11ba4ee0881353792330cc7670

Sharing

Copy URL Twitter E-mail

General

Target

ab11483c7bc0f9c7cfed40689370903de8f99c11ba4ee0881353792330cc7670
Size

74KB
MD5

65719e9d2e841d4e3f9cfbbb6c25fb40
SHA1

f2c97625056ae822c185d741c1caefc3ecd4559b
SHA256

ab11483c7bc0f9c7cfed40689370903de8f99c11ba4ee0881353792330cc7670
SHA512

159648254f20906a8388f6ae9b9456d1d0c22e2b95ffdb9e4507b7cda7f38a1053353a68db2c90339fc4130024fc6e8975881249183c17ccb45ec43f7019eb74
SSDEEP

1536:/sIo8hZvcO+fmzUriMpqJRI6uoLPGEwHpjd0Fzji5lawy2X:/Fo8jKfmwjh6bL5yjSa5fN

Score

N/A

Malware Config

Signatures

Files

ab11483c7bc0f9c7cfed40689370903de8f99c11ba4ee0881353792330cc7670
.zip
Invoice_Pdf_______________________________________________________________ .exe
.exe windows x86

a3909b1b9dc0254e933633dd41c66291

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
GetStringTypeW
GetProcessHeap
SetEndOfFile
HeapReAlloc
HeapSize
IsValidCodePage
GetOEMCP
GetACP
LoadLibraryW
FlushFileBuffers
WriteConsoleW
SetStdHandle
RaiseException
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
CloseHandle
CancelIo
GetModuleFileNameA
LoadLibraryA
ResetEvent
GetProcAddress
GetLastError
GetOverlappedResult
CreateFileW
ReadFile
FileTimeToSystemTime
HeapCreate
GetFileAttributesA
CreateEventA
Sleep
WriteFile
WaitForSingleObject
FreeLibrary
HeapAlloc
SetFilePointer
GetCPInfo
CreateFileA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
HeapFree
GetConsoleMode
GetCommandLineA
HeapSetInformation
GetStartupInfoW
IsProcessorFeaturePresent
DecodePointer
EncodePointer
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
RtlUnwind
MultiByteToWideChar
WideCharToMultiByte
GetConsoleCP
DeleteCriticalSection
GetModuleHandleW
ExitProcess
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement

user32

DestroyWindow
GetWindowTextLengthW
BeginPaint
GetDC
GetMenu
PostQuitMessage
EndPaint
MessageBoxA
ReleaseDC
DefWindowProcA
SetWindowPos
GetMenuItemInfoA
EnumDesktopsA
GetMenuItemCount
LoadImageA
FindWindowA
DialogBoxParamA
SetWindowTextW
GetWindowThreadProcessId

gdi32

BitBlt
FrameRgn
CancelDC
GetTextExtentPoint32A
LineTo
CreateHatchBrush
DeleteDC
Polygon
CreateFontIndirectA
GetDIBits
SetBkColor
SetBkMode
DeleteObject
SelectObject
SelectClipRgn
CreateCompatibleDC
CombineRgn
CreateCompatibleBitmap
Rectangle
CreateBitmapIndirect
GetTextMetricsA
CreateSolidBrush
TextOutA
CreateEllipticRgn

comdlg32

ChooseFontA
ChooseColorA

psapi

GetModuleInformation

secur32

AcquireCredentialsHandleA

setupapi

SetupDiGetClassDevsA

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 42KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3909b1b9dc0254e933633dd41c66291

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

psapi

secur32

setupapi

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 42KB - Virtual size: 41KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 47KB - Virtual size: 46KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 42KB - Virtual size: 41KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 47KB - Virtual size: 46KB