c84ea16497a2788633fbc879537a11f1582040d13f48819f1404cd88539b30a0

Sharing

Copy URL

Twitter E-mail

General

Target

c84ea16497a2788633fbc879537a11f1582040d13f48819f1404cd88539b30a0
Size

231KB
MD5

98c3e5293eb008c76ce4931dd3029abd
SHA1

9cecf7b183250c88eeebf2921e592a035af1e666
SHA256

c84ea16497a2788633fbc879537a11f1582040d13f48819f1404cd88539b30a0
SHA512

e221c559d8b57eb869b653fcb188089492818730ced3c55b0b80365f049f7399e6876ae56de3c64c9130f74a3e33de0bad91777571483a72d627df2c2ba2e0bb
SSDEEP

6144:d7a2P2JqPUktCcce3s3hXSXK0Ngo5eKHNXkGwh:Vabqxgc33ehU5l0L

Score

N/A

Malware Config

Signatures

Files

c84ea16497a2788633fbc879537a11f1582040d13f48819f1404cd88539b30a0
.exe windows x86

1fab1995631c124d4c5ad10f386f1fa8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PrintDlgW
ChooseFontW
GetSaveFileNameW
PageSetupDlgW

gdi32

ScaleWindowExtEx
CreateSolidBrush
MoveToEx
LPtoDP
CreateRectRgn
GetPixel
CreateDiscardableBitmap
CreateFontIndirectW
SetBrushOrgEx
OffsetRgn
AddFontResourceW
CreateCompatibleDC
SetLayout
SetTextAlign
PatBlt
SetBitmapBits
SetPixel
CreateEllipticRgnIndirect

msvcrt

_controlfp
printf
remove
ftell
__set_app_type
strstr
__p__fmode
__p__commode
mbstowcs
_amsg_exit
time
wcschr
_initterm
wcsncpy
qsort
_acmdln
exit
_ismbblead
wcslen
free
_XcptFilter
fgets
_exit
_cexit
__setusermatherr
__getmainargs

user32

GetMenu
GetClassInfoExW
CloseDesktop
GetMessageTime
TabbedTextOutW
GetMenuItemID
DialogBoxIndirectParamA
GetDlgItem
AdjustWindowRectEx
GetDlgItemInt
CreatePopupMenu
InsertMenuW
SendMessageTimeoutW
GetKeyboardLayout
UpdateWindow
DestroyAcceleratorTable
ScreenToClient
SetLastErrorEx
GetScrollInfo
GetForegroundWindow
DeferWindowPos
ValidateRect
wsprintfA
SendInput
LoadAcceleratorsW
MapVirtualKeyExW
CharUpperA
keybd_event
GetDialogBaseUnits
SendMessageW
OffsetRect
SetClassLongW
ChildWindowFromPoint
RedrawWindow
SetCursorPos
DrawIconEx
GetNextDlgTabItem
LoadMenuW
CheckRadioButton
SetForegroundWindow
DrawFocusRect
CreateAcceleratorTableW
DrawStateA
CreateIconIndirect
EnumThreadWindows
FillRect

shlwapi

StrToIntA
StrNCatA
PathRemoveBlanksW

kernel32

GetProcessHeap
SearchPathA
SetFileAttributesA
IsBadWritePtr
GetThreadContext
GlobalAddAtomW
SetCommMask
MoveFileA
GetModuleHandleW
SleepEx
HeapAlloc
IsBadCodePtr
EnumResourceLanguagesA
GetSystemDefaultUILanguage
CreateDirectoryA
CreateWaitableTimerA
GetDateFormatA
CompareFileTime
GetSystemDirectoryA
OpenEventW
SystemTimeToFileTime
GetCurrentDirectoryW
CopyFileA
HeapFree

Exports

Exports

?RtlFullNameExA@@YGJEJ*Z
?CloseState@@YGJFHF*Z
?CrtStateExW@@YGKPAMHPAM*Z
?LoadCharExA@@YGPAK_NN*Z
?GetListItemA@@YGJPAKM*Z
?DeleteTimeExA@@YGPAXIN_N*Z

Sections

.text
Size: 200KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ditxt
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbug
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dimp
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbg
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dvr
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dpt
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dcode
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 377KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1fab1995631c124d4c5ad10f386f1fa8

Headers

File Characteristics

Imports

comdlg32

gdi32

msvcrt

user32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 200KB - Virtual size: 200KB

.ditxt Size: 512B - Virtual size: 508B

.dbug Size: 512B - Virtual size: 28B

.dimp Size: 3KB - Virtual size: 2KB

.dbg Size: 512B - Virtual size: 85B

.dvr Size: 512B - Virtual size: 140B

.dpt Size: 512B - Virtual size: 508B

.dcode Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 377KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 200KB - Virtual size: 200KB

.ditxt
Size: 512B - Virtual size: 508B

.dbug
Size: 512B - Virtual size: 28B

.dimp
Size: 3KB - Virtual size: 2KB

.dbg
Size: 512B - Virtual size: 85B

.dvr
Size: 512B - Virtual size: 140B

.dpt
Size: 512B - Virtual size: 508B

.dcode
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 377KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 1KB - Virtual size: 1KB