de52ac2da3db285af3e7e06a1a96881ffb718b2423edf6c053b5956505f6ec8c

Sharing

Copy URL Twitter E-mail

General

Target

de52ac2da3db285af3e7e06a1a96881ffb718b2423edf6c053b5956505f6ec8c
Size

165KB
MD5

4d3f21224fa88ec0d496d9cb3c94d1f0
SHA1

bc5adf27bd31ec6eed53d2e5c808512c3c73faa8
SHA256

de52ac2da3db285af3e7e06a1a96881ffb718b2423edf6c053b5956505f6ec8c
SHA512

ebb5408851e109c3aa98b2dacb3febea290126e3cac7b219462fc7085575b961c8d398248e445fd20c6652443469c94894dabfe9f9f0df4b07e56ee817fa82af
SSDEEP

3072:1O16zqZ2xKZlNun0qlNm4pvG4nOcLzhZUl1RyjVPjkqURJ1lx:1O1cqen0q/mX4Oc/UT4JbU/

Score

N/A

Malware Config

Signatures

Files

de52ac2da3db285af3e7e06a1a96881ffb718b2423edf6c053b5956505f6ec8c
.exe windows x86

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeClipboardChain
EnableMenuItem
PeekMessageA
InSendMessageEx
SetWindowLongA
TrackPopupMenuEx
IsCharAlphaNumericW
GetDC
GetIconInfo
MessageBeep
RemovePropW
DestroyAcceleratorTable
ShowOwnedPopups
CharToOemBuffA
IsCharAlphaNumericA
GetWindowThreadProcessId
LoadMenuW
OpenWindowStationA
OffsetRect
DdeAddData
CreateDialogParamA
GetClipboardOwner
AdjustWindowRectEx
FindWindowExW
GetMenuStringA
SetWindowsHookExA
DispatchMessageW
OemToCharBuffA
CheckMenuItem
DefWindowProcW
CallWindowProcW
DialogBoxIndirectParamA
ShowWindow
EnumWindowStationsW
CharUpperW
MapVirtualKeyExW
CharUpperBuffA
RegisterClipboardFormatA
CharLowerW
GetClassInfoExW
SetMenuItemBitmaps
DialogBoxIndirectParamW
MapVirtualKeyW
InvertRect
GetDesktopWindow
CheckDlgButton
DdeQueryStringA
SendMessageW
SetMenuItemInfoW
EndTask

gdi32

GetFontData
GetTextAlign
GetTextExtentPointA
CreateRoundRectRgn
GetDIBits
SetPaletteEntries

ntdll

_aulldiv
_allshl
_allmul

Exports

Exports

?FoodActaMautglopThudCloyechtaa@@YGXPCJU_SECURITY_DESCRIPTOR@@UProfVote@@PC_J@Z

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Khetby
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dugen
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.moswo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Rhospa
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Everid
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pupba
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Cohooy
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bosen
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab793f1c61b0791b379306c1f4758611

Headers

DLL Characteristics

File Characteristics

Imports

user32

gdi32

ntdll

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.Khetby Size: 6KB - Virtual size: 6KB

.dugen Size: 4KB - Virtual size: 4KB

.moswo Size: 4KB - Virtual size: 4KB

.Rhospa Size: 7KB - Virtual size: 7KB

.Everid Size: 5KB - Virtual size: 5KB

.data Size: 10KB - Virtual size: 10KB

.pupba Size: 17KB - Virtual size: 16KB

.Cohooy Size: 11KB - Virtual size: 10KB

.edata Size: 11KB - Virtual size: 10KB

.bosen Size: 8KB - Virtual size: 8KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 60KB - Virtual size: 59KB

.Khetby
Size: 6KB - Virtual size: 6KB

.dugen
Size: 4KB - Virtual size: 4KB

.moswo
Size: 4KB - Virtual size: 4KB

.Rhospa
Size: 7KB - Virtual size: 7KB

.Everid
Size: 5KB - Virtual size: 5KB

.data
Size: 10KB - Virtual size: 10KB

.pupba
Size: 17KB - Virtual size: 16KB

.Cohooy
Size: 11KB - Virtual size: 10KB

.edata
Size: 11KB - Virtual size: 10KB

.bosen
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 17KB - Virtual size: 17KB