d72485690041cfb70b6432c616c46f24a39ff97a99eb17d7c2d179f5db37bf9e

Sharing

Copy URL Twitter E-mail

General

Target

d72485690041cfb70b6432c616c46f24a39ff97a99eb17d7c2d179f5db37bf9e
Size

152KB
MD5

0f3ab415ef3ab8d68a5ccea4291137db
SHA1

aecaf3c916e8b1efc4ed10b195dd784408b74508
SHA256

d72485690041cfb70b6432c616c46f24a39ff97a99eb17d7c2d179f5db37bf9e
SHA512

27e09e72836cc9db122db0e4a63094ba7b22d84954f7168291903ccad719ffa54f16ce173acc4f4aef4f75fe2bf6fe3b0946798dca46fa43ed45df800cdb230f
SSDEEP

3072:RGRmdUwj50i8+xZtJ7pyMGUASAToEv0R6F60ilvoG2VNhK4LZB:RGoltnZ5pxBzJ0F661NhhB

Score

N/A

Malware Config

Signatures

Files

d72485690041cfb70b6432c616c46f24a39ff97a99eb17d7c2d179f5db37bf9e
.exe windows x86

46e4cc7a7158d78cd8bc12e21d9a60d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RoundRect
GetTextExtentPointW
RealizePalette
Polygon
ResizePalette
SelectPalette

shlwapi

PathMakePrettyA
StrSpnA

comdlg32

GetOpenFileNameA
GetOpenFileNameW

user32

CharUpperBuffA
RegisterClassW
CheckDlgButton
InvertRect
MonitorFromRect
SetDlgItemTextA
InternalGetWindowText
DrawTextExW
LoadBitmapW
IsCharAlphaW
EnumChildWindows
GetKeyboardLayoutNameW

kernel32

GetSystemTimeAdjustment
GetCurrentProcessId
GetBinaryTypeW
WaitForSingleObject
FindFirstChangeNotificationW
GetCommandLineW
ExitProcess
GetUserDefaultLCID

msvcrt

exit

Exports

Exports

?wpueoJYOMMYX@@YG_NE@Z
?_MAHIRTPZ_AR__NT@@YGPANPAGD@Z
?jfh_jh_ei_iLLOSMXxz@@YGF_N@Z
?__MPUKG@@YGGI@Z
?ctt_wzhf@@YGDNI@Z
?RHSg_ipc@@YGPAHGJ@Z

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.r_dat
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46e4cc7a7158d78cd8bc12e21d9a60d5

Headers

File Characteristics

Imports

gdi32

shlwapi

comdlg32

user32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 51KB - Virtual size: 50KB

.r_dat Size: 8KB - Virtual size: 8KB

.data Size: 5KB - Virtual size: 336KB

.rdata Size: 28KB - Virtual size: 28KB

.pdata Size: 16KB - Virtual size: 16KB

.rsrc Size: 39KB - Virtual size: 40KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 51KB - Virtual size: 50KB

.r_dat
Size: 8KB - Virtual size: 8KB

.data
Size: 5KB - Virtual size: 336KB

.rdata
Size: 28KB - Virtual size: 28KB

.pdata
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 39KB - Virtual size: 40KB

.reloc
Size: 2KB - Virtual size: 1KB