4e0876a85bc514106e071164f22a6011b6caf622650a25741839fd4409c79235

General

Target

4e0876a85bc514106e071164f22a6011b6caf622650a25741839fd4409c79235
Size

13KB
MD5

6881f1fb5c232926372f72820be77c65
SHA1

00c6e14b2bc902ca784ab932c7e2621eed8a01eb
SHA256

4e0876a85bc514106e071164f22a6011b6caf622650a25741839fd4409c79235
SHA512

0efd03a76b967611a743c11daf1da4886da9f7bb1ebb7c3f1eae0f801649363a88a0feda0dc228abb8c6743525b35d4f5dd98bdef05aedbcd53878db5ea00f68
SSDEEP

384:glwhGjbKdTLNAYOl2r/K7eym76CduxTm1iV:glZ+RqYB11gxT7V

Score

N/A

Malware Config

Signatures

Files

4e0876a85bc514106e071164f22a6011b6caf622650a25741839fd4409c79235
.zip
document1974_pdf.exe
.exe windows x86

b7814b04da9288a413e1350221e55403

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SendMessageW
DestroyWindow
SendMessageA
PostQuitMessage
DefWindowProcW
CreateWindowExW
LoadIconW
LoadCursorW
RegisterClassExW
LoadStringA
LoadStringW
GetMessageW
TranslateMessage
DispatchMessageW

kernel32

HeapAlloc
HeapFree
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
VirtualAlloc
CreateFileW
LoadLibraryA
GetCommandLineW
SetLastError
GetCurrentDirectoryW
FindFirstChangeNotificationW
GetFileTime
InterlockedIncrement
InterlockedDecrement
GetCurrentProcessId
GetTickCount
CloseHandle
GetModuleHandleA
GetModuleHandleW
GetProcAddress
WideCharToMultiByte
GetEnvironmentStringsW
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings

comctl32

InitCommonControlsEx

shell32

CommandLineToArgvW

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7814b04da9288a413e1350221e55403

Headers

File Characteristics

Imports

user32

kernel32

comctl32

shell32

Sections

.text Size: 12KB - Virtual size: 11KB

.data Size: 16KB - Virtual size: 16KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 12KB - Virtual size: 11KB

.data
Size: 16KB - Virtual size: 16KB

.rsrc
Size: 12KB - Virtual size: 12KB