d6293254eaf35221ec5aba2de079d89d548b71a100e9c7d846b45eee5d337300

Sharing

Copy URL Twitter E-mail

General

Target

d6293254eaf35221ec5aba2de079d89d548b71a100e9c7d846b45eee5d337300
Size

189KB
MD5

cae7b99c5589df7ed3bbd30f7abc94ac
SHA1

b2c7faa23ab246971ba109121e240eaea45be85d
SHA256

d6293254eaf35221ec5aba2de079d89d548b71a100e9c7d846b45eee5d337300
SHA512

54cb1e816b431b6a1b5c567d7a08f852b5bac9197e2af1224c384c444fed805764549e3a3e35c8ba602858639ff98e26ec94fdde00f686f8d278c5f62788b4e2
SSDEEP

3072:nX6Ff5tzCp9KEJSHGwpgq4w7wxf7DjuDQDxTzosOGE+IIMtQniADuG36H/njuJU9:n4f5tbySmwpgIq7DnzosvDI3DAh3o74u

Score

N/A

Malware Config

Signatures

Files

d6293254eaf35221ec5aba2de079d89d548b71a100e9c7d846b45eee5d337300
.zip
2014_11rechnung_4768955881_pdf_sign_telekom_de_deutschland_gmbh.exe
.exe windows x86

6b3bb5d9be584c85da61aa49f1361893

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msimg32

TransparentBlt
vSetDdrawflag
AlphaBlend
DllInitialize
GradientFill

rtutils

RouterLogEventW
TraceDeregisterExA
TraceDeregisterExW
TracePutsExA
RouterGetErrorStringW
RouterLogEventExA
TraceDeregisterW
RouterGetErrorStringA
RouterLogDeregisterA
TracePrintfA
RouterLogEventExW
RouterLogEventValistExA
RouterLogEventA
RouterLogDeregisterW
RouterLogEventDataW
RouterLogEventStringW
MprSetupProtocolFree
TraceGetConsoleW
TraceGetConsoleA
RouterLogEventStringA
LogEventA

comctl32

LBItemFromPt
ImageList_Merge
ImageList_GetImageRect
ImageList_GetImageCount

kernel32

lstrcmpA
HeapFree
VirtualAlloc
GetVersion
LoadLibraryA
GetProcessHeap
lstrlenA
GetProcAddress
GetCurrentProcessId
lstrcpynW
GetCurrentProcess
GetConsoleTitleW
HeapAlloc
GetVersionExW

user32

FindWindowW
ReplyMessage
GetClientRect
GetSysColor
GetPriorityClipboardFormat
GetWindowTextA
ChangeMenuA
ReuseDDElParam
LoadMenuA
FindWindowExW
IsWindow
wsprintfA
InsertMenuItemW
GetForegroundWindow
FindWindowA
SetWindowPos
LoadIconA
SendMessageA
PrivateExtractIconExW
SetParent
BringWindowToTop
CloseWindow

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6b3bb5d9be584c85da61aa49f1361893

Headers

DLL Characteristics

File Characteristics

Imports

msimg32

rtutils

comctl32

kernel32

user32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 184KB - Virtual size: 183KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 26KB - Virtual size: 26KB

.reloc Size: 1024B - Virtual size: 776B

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 184KB - Virtual size: 183KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 26KB - Virtual size: 26KB

.reloc
Size: 1024B - Virtual size: 776B