d41859151e55f1fd9c1124d93638827f6a9ddb44fc761f315dec6a96f2f94fb9

Sharing

Copy URL Twitter E-mail

General

Target

d41859151e55f1fd9c1124d93638827f6a9ddb44fc761f315dec6a96f2f94fb9
Size

686KB
MD5

b758ce13c5abef510fa2e652242eb626
SHA1

e11f4422e54ca7d7cdb478aedcc040b166cbc616
SHA256

d41859151e55f1fd9c1124d93638827f6a9ddb44fc761f315dec6a96f2f94fb9
SHA512

da8eec0cb4565f6b0c0d229bc381f7a6e607fd0811baf8365d825d9b9876dfd69cc0c7eaae05e4dd3bffc0f07eee2b41909b506a8dfb2d843a3dc0d5cdb2acd8
SSDEEP

12288:PCQDuHQYtOt2k/NYV4oSWOEKFvVwmLRe:P3DCQY4t1NcXOEKFNwmLs

Score

N/A

Malware Config

Signatures

Files

d41859151e55f1fd9c1124d93638827f6a9ddb44fc761f315dec6a96f2f94fb9
.exe windows x86

5a4764b61864b9dd640357a17c0b168d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetRegisterWordStyleA
ImmGetProperty

user32

AppendMenuA
RegisterClassExA
GetUserObjectInformationW
DialogBoxIndirectParamA
CallMsgFilterA
OemToCharBuffA
SetRectEmpty
MessageBoxA
DlgDirSelectComboBoxExA
GetMessageA
EnumWindowStationsA
GetQueueStatus
GetDialogBaseUnits
EnumDesktopsA
CreateAcceleratorTableW
ExcludeUpdateRgn
SetScrollPos
PostMessageA
DrawFocusRect
GetKeyNameTextA
LoadBitmapA
GetCaretBlinkTime
CreateAcceleratorTableA
CreateIconFromResourceEx
GetCursorPos
CreateDialogParamA
SetScrollRange
BeginDeferWindowPos
CreateIconFromResource
DdeAddData
OffsetRect
CloseWindowStation
IsMenu
DrawTextExA
GetInputState
ScrollWindow
DdeSetUserHandle
GetClassInfoW
ValidateRect
GetScrollRange
GetCursor
SetWindowsHookW

oleaut32

VarDateFromI1

lz32

LZInit
LZOpenFileA

advapi32

IsTokenRestricted

gdi32

GetCharABCWidthsFloatA
EnumFontFamiliesExA
GetMetaFileA
GetTextFaceW

shlwapi

StrPBrkW
PathIsContentTypeW

kernel32

GetNumberFormatW
GetLogicalDriveStringsW
DebugActiveProcess
FindResourceW
CreateProcessW
CopyFileA
GetConsoleOutputCP
EnumResourceNamesA
FindFirstChangeNotificationW
BackupSeek
GetVolumeInformationW
GetShortPathNameW
GetCompressedFileSizeA
GetCurrentThread
EscapeCommFunction
FlushViewOfFile
GetTapeParameters
GlobalUnWire
ExitProcess
lstrlenW
EnumCalendarInfoA

Sections

.text
Size: 527KB - Virtual size: 527KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 55KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5a4764b61864b9dd640357a17c0b168d

Headers

DLL Characteristics

File Characteristics

Imports

imm32

user32

oleaut32

lz32

advapi32

gdi32

shlwapi

kernel32

Sections

.text Size: 527KB - Virtual size: 527KB

.rdata Size: 26KB - Virtual size: 25KB

.data Size: 55KB - Virtual size: 1.9MB

.rsrc Size: 76KB - Virtual size: 75KB

.text
Size: 527KB - Virtual size: 527KB

.rdata
Size: 26KB - Virtual size: 25KB

.data
Size: 55KB - Virtual size: 1.9MB

.rsrc
Size: 76KB - Virtual size: 75KB