df335aac81bf32b052be2ee18f9772ceaac7f2cae26d970e8509cc4e43a06672

General

Target

df335aac81bf32b052be2ee18f9772ceaac7f2cae26d970e8509cc4e43a06672
Size

418KB
MD5

c60f6e65d5ad0aa43c522b5be1f4ed77
SHA1

f28aeccc7ee521e648f1d22352ff21c97c5afe2b
SHA256

df335aac81bf32b052be2ee18f9772ceaac7f2cae26d970e8509cc4e43a06672
SHA512

d1e9f4e21ff44d2e6d3e9fc82b08ad323f9d2e69293d2eb527ee0265144f5d123b78c5c836c1976cf525c66f4ea72948c0824f7bd41502bf85a3cc72021c2f6f
SSDEEP

6144:sj0FN2U1ZoPr/jhh8828ElII4werNntYFn1vlV3BfC35ymeXYJvG:1QPr7hh8wI4VvYFrZBa35y3XYhG

Score

N/A

Malware Config

Signatures

Files

df335aac81bf32b052be2ee18f9772ceaac7f2cae26d970e8509cc4e43a06672
.exe windows x86

045f645f9045a0e24e3a250061032421

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileStringA
GetLogicalDrives
OutputDebugStringW
GetSystemDirectoryA
FindAtomA
GetNamedPipeInfo
FlushViewOfFile
WriteConsoleOutputA
FindFirstFileExW
PeekNamedPipe
MoveFileA
MoveFileExW
CreateFileMappingA
FreeEnvironmentStringsA
GetExitCodeProcess
ReadConsoleInputW
GetProfileIntA
CreateFiber
IsValidCodePage
FillConsoleOutputAttribute
SetupComm

user32

CreateIconFromResource
UnregisterClassW
IsRectEmpty
ValidateRect
GetTopWindow
SetMenuInfo
OffsetRect
SendDlgItemMessageA
CheckMenuRadioItem
EnumDisplayDevicesW
InsertMenuItemA
GetPropA
EndDeferWindowPos
FindWindowExW
GetSystemMenu
SwapMouseButton
SetWinEventHook
PeekMessageA
VkKeyScanA
GetMenuDefaultItem
SendMessageA
SystemParametersInfoA
CharUpperW
NotifyWinEvent
PeekMessageW
RegisterClassExW
IsClipboardFormatAvailable
OpenClipboard
LoadAcceleratorsA
MapVirtualKeyA
CheckMenuItem
FindWindowW

gdi32

AddFontResourceA
GetSystemPaletteUse

shell32

ShellAboutA
SHGetPathFromIDListW
SHFileOperationW
ExtractIconA

Sections

.text
Size: 35KB - Virtual size: 345KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 368KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

045f645f9045a0e24e3a250061032421

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

Sections

.text Size: 35KB - Virtual size: 345KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 368KB - Virtual size: 368KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 35KB - Virtual size: 345KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 368KB - Virtual size: 368KB

.rsrc
Size: 10KB - Virtual size: 9KB