e6cbefc90b8e5610a84b7d7e0a6a3e0d5f54204a23fea81459af2619b1f324dc

Sharing

Copy URL Twitter E-mail

General

Target

e6cbefc90b8e5610a84b7d7e0a6a3e0d5f54204a23fea81459af2619b1f324dc
Size

59KB
MD5

c68a17d3022a0f4706bb081b2e49a48b
SHA1

507d768bee38aa1ccc1d7143bfc2e604899314d4
SHA256

e6cbefc90b8e5610a84b7d7e0a6a3e0d5f54204a23fea81459af2619b1f324dc
SHA512

f8dae56663bb9e271d7a8adc53693afe2ad93ecc990b0955d4f211bfc4c11060c5e81ad2ef7f3f85b3fe9a69bc4407c116e7231931574a8c643f2ca1accbae77
SSDEEP

1536:yE7Zx4piD0TDh1A3CpIbUKD1bxXaSP/4ua3:SiDib/4f7XaSPpa3

Score

N/A

Malware Config

Signatures

Files

e6cbefc90b8e5610a84b7d7e0a6a3e0d5f54204a23fea81459af2619b1f324dc
.zip
order_number_1Z3X06980142015549.pdf.scr
.exe windows x86

ab1ca7ce154df027052bee062d0d15d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetStringTypeW
MultiByteToWideChar
LCMapStringW
GlobalAlloc
LoadLibraryW
RtlUnwind
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
CloseHandle
GetProcAddress
GetLocalTime
SystemTimeToFileTime
LocalFileTimeToFileTime
GetNamedPipeInfo
HeapCreate
HeapAlloc
Sleep
lstrcpyW
lstrlenW
lstrcatW
FindFirstFileW
FindNextFileW
GetLastError
FindClose
HeapSize
LoadLibraryA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RaiseException
GetCommandLineA
HeapSetInformation
GetStartupInfoW
HeapFree
EncodePointer
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
DecodePointer
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime

user32

GetDlgItem
CreateMenu
AppendMenuA
MessageBoxA
RealChildWindowFromPoint
LoadCursorA
LoadIconA
RegisterClassA
wsprintfW
CreateWindowExA
GetSystemMetrics
GetDC
MonitorFromWindow
GetMonitorInfoA
FindWindowA
EnumDisplayMonitors

gdi32

CreateCompatibleBitmap
SelectObject
BitBlt
DeleteDC
GetDIBits
GetTextMetricsA
Polygon
CreatePen
CreateFontA
Arc
MoveToEx
LineTo
GetPixel
SetBkColor
CreateSolidBrush
CreateCompatibleDC

advapi32

IsWellKnownSid
AllocateAndInitializeSid

wininet

HttpQueryInfoA

uxtheme

GetThemeDocumentationProperty

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab1ca7ce154df027052bee062d0d15d4

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

wininet

uxtheme

Sections

.text Size: 84KB - Virtual size: 84KB

.data Size: 9KB - Virtual size: 13KB

.rsrc Size: 26KB - Virtual size: 25KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 84KB - Virtual size: 84KB

.data
Size: 9KB - Virtual size: 13KB

.rsrc
Size: 26KB - Virtual size: 25KB

.reloc
Size: 5KB - Virtual size: 5KB