d7be45d433d5bb9763cbe117cc62d67de49c1ef7f43fbd74c7ceca8dc7f36cd2

Sharing

Copy URL Twitter E-mail

General

Target

d7be45d433d5bb9763cbe117cc62d67de49c1ef7f43fbd74c7ceca8dc7f36cd2
Size

167KB
MD5

53cee061df5ff9a3bf21552585a0c460
SHA1

1ed210eb59adf84e4f8d0a6f782bd25b528c3da4
SHA256

d7be45d433d5bb9763cbe117cc62d67de49c1ef7f43fbd74c7ceca8dc7f36cd2
SHA512

02659d712adb97dd0a3d533845bdebee96f7ae73deff87788a1e782e8e7819d1afc87ae3840c2f5d2016a9809e305d3bad38190ea851d691bd51c52d1521ad28
SSDEEP

3072:Wc67GnVQTLkFGDCvZFaiKkjI6deB6aQe5IEhxCW4eIswcDiaoouWC4lLE0X:Wc6GnyjCh42jIb0e5dvN4eJN1uWk0

Score

N/A

Malware Config

Signatures

Files

d7be45d433d5bb9763cbe117cc62d67de49c1ef7f43fbd74c7ceca8dc7f36cd2
.exe windows x86

1475e86f07432fed82e0be5b159c6218

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiA
GetThreadPriority
GetConsoleMode
LoadLibraryExW
CreateSemaphoreA
FileTimeToLocalFileTime
CreateEventA
GetDiskFreeSpaceA
GetEnvironmentVariableW
GetDriveTypeW
GetStartupInfoW
GetUserDefaultLCID
GetProcessHeap
IsBadReadPtr
GetDriveTypeA
GetVolumeInformationA
IsValidLanguageGroup
GetEnvironmentVariableA
IsDBCSLeadByteEx
GetThreadLocale
IsValidCodePage
SetFileApisToOEM
GetCurrentThreadId
SetErrorMode
FindVolumeClose

user32

DdeAddData
MapVirtualKeyA
DrawEdge
SetActiveWindow
RemoveMenu
InternalGetWindowText
CallWindowProcA
GetScrollPos
DestroyIcon
DestroyMenu
CountClipboardFormats
BeginDeferWindowPos
DdePostAdvise
UnhookWindowsHookEx
FindWindowExW
GetActiveWindow
IsDlgButtonChecked
CheckDlgButton
DefWindowProcA
SetWindowLongW
MapVirtualKeyExW
GetClipboardData
GetWindowLongA
SetWindowLongA
SetLastErrorEx
LoadIconW
GetDC
wsprintfW
GetClassLongW
SendMessageA
FindWindowExA
GetProcessWindowStation
DeleteMenu
IsZoomed
GetTopWindow
GetMenuItemID
GetThreadDesktop
MapVirtualKeyW
CloseClipboard
GetWindowTextLengthW
SetCursor
DdeInitializeW
CopyAcceleratorTableW
DrawFrameControl
GetMessagePos

gdi32

GetStockObject
SetViewportExtEx

ole32

CoInitialize

Exports

Exports

?AnsaPoemKeefMautTikiacedbroby@@YGGHPCKACJ@Z
?EsesTaelesneMuskyo@@YGXI@Z
?NettDrubMaraNapsno@@YG_KPCUPeenReadfid@@AC_K@Z
?WolfliloOxenIllyWichEkedBoos@@YGGACU_GUID@@UAxesTuisEpic@@PCU_SECURITY_DESCRIPTOR@@DK@Z

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1475e86f07432fed82e0be5b159c6218

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 87KB - Virtual size: 87KB

.data Size: 22KB - Virtual size: 22KB

.rsrc Size: 34KB - Virtual size: 34KB

.reloc Size: 22KB - Virtual size: 21KB

.text
Size: 87KB - Virtual size: 87KB

.data
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 34KB - Virtual size: 34KB

.reloc
Size: 22KB - Virtual size: 21KB