55d668d88d4d532d7fb132a9b62098ff55136f617738a27a2e8f63b6babdb445

Sharing

Copy URL Twitter E-mail

General

Target

55d668d88d4d532d7fb132a9b62098ff55136f617738a27a2e8f63b6babdb445
Size

271KB
MD5

0b94e8bca4e2aab29876908a6c8f5245
SHA1

cbf781709617e0efde8ca09eeb15c86623dd7864
SHA256

55d668d88d4d532d7fb132a9b62098ff55136f617738a27a2e8f63b6babdb445
SHA512

907d239ac8fe224aeb49059e275a48da84f6dcfca5ea5a415e01b561745ed1539f5d0ac6eb14387de7604200183a5e7f9dad908d07fc4c89a171f35df0459288
SSDEEP

6144:/FzO/in0Rap2kUfHGZy+CVcsY0JpI4msxr17kl+rVWKFTM:A/j6Zy+rsxJpI4msxrh1AKBM

Score

N/A

Malware Config

Signatures

Files

55d668d88d4d532d7fb132a9b62098ff55136f617738a27a2e8f63b6babdb445
.exe windows x86

4b0dfd77b113ea314b41c0bef448e163

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowPos
TranslateMessage
DestroyWindow
GetClientRect
BeginPaint
AdjustWindowRect
WindowFromDC
SetRectEmpty
GetMessageW
PostQuitMessage
LoadStringW
UnregisterClassW
RegisterClassW
GetSystemMetrics
ShowWindow
InSendMessage
IsZoomed
LoadCursorW
SetWindowTextW
GetWindowTextW
EndPaint
GetWindowLongW
IsWindowVisible
SendMessageW
SetForegroundWindow
PostMessageW
IsIconic
IsWindow
DispatchMessageW
SetWindowLongW
ScreenToClient
DefWindowProcW
CreateWindowExW
GetWindowRect

kernel32

WaitForSingleObject
SetUnhandledExceptionFilter
MultiByteToWideChar
LocalAlloc
GetTickCount
LoadLibraryW
CloseHandle
SetEvent
GlobalFindAtomW
QueryPerformanceCounter
IsValidLocale
LocalFree
GetCurrentProcess
lstrlenW
MulDiv
ResetEvent
GetCurrentProcessId
lstrcpynW
lstrcpyW
CreateEventW
CreateThread
lstrlenA
GetSystemTimeAsFileTime

gdi32

SelectPalette
GetObjectType
StretchDIBits
SetStretchBltMode
RealizePalette
GetStockObject
DeleteObject
CreatePalette

winmm

GetDriverModuleHandle
mciGetDriverData
DefDriverProc
mciFreeCommandResource
mciDriverYield
mciSetDriverData
mciLoadCommandResource

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemFree

quartz

AmpFactorToDB
DBToAmpFactor

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b0dfd77b113ea314b41c0bef448e163

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

winmm

ole32

quartz

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 98KB - Virtual size: 98KB

.data Size: 96KB - Virtual size: 112KB

.rsrc Size: 34KB - Virtual size: 33KB

.reloc Size: 512B - Virtual size: 500B

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 98KB - Virtual size: 98KB

.data
Size: 96KB - Virtual size: 112KB

.rsrc
Size: 34KB - Virtual size: 33KB

.reloc
Size: 512B - Virtual size: 500B