b87a2e8c99f199f1569f0d37c74cbebbe1516ad08857e687ad6c95c0b812ec45

Sharing

Copy URL

Twitter E-mail

General

Target

b87a2e8c99f199f1569f0d37c74cbebbe1516ad08857e687ad6c95c0b812ec45
Size

170KB
MD5

07fca0f45213520fab52e4438b82d882
SHA1

ff4cdd4003dbfe37c9406322b8fc259e5ca5b93a
SHA256

b87a2e8c99f199f1569f0d37c74cbebbe1516ad08857e687ad6c95c0b812ec45
SHA512

a4b139c778b863154c12862ede4425f297bac4e8dc9724779fced80918ab128e13fc1d19d15ffb45066ae99dcc37f584cf1772a720ce68368abfe7e6308e961a
SSDEEP

3072:XBhw7aisNbhKPaL8z/DGeTaPUq4QI+DSAXyumsJXbDSY5iEuQXNZ:xhw7aikFKnD1+87syumsJXbWY8EnXv

Score

N/A

Malware Config

Signatures

Files

b87a2e8c99f199f1569f0d37c74cbebbe1516ad08857e687ad6c95c0b812ec45
.exe windows x86

b6e360311cb1c3e908055675765ae431

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitCommEvent
CloseHandle
LoadLibraryW
GetVersionExA
WaitCommEvent
GetModuleFileNameA
GlobalAlloc
ReadFile
ExitProcess
LocalFree
DisableThreadLibraryCalls
GetCurrentThreadId
GetSystemTimeAsFileTime
EnumResourceNamesW
CreateFileW
GetFullPathNameW
GetCurrentProcessId
ExitProcess
GetTickCount
GlobalLock
LocalAlloc
GlobalUnlock

user32

EnableWindow
FindWindowA
SetCursor
DestroyMenu
TrackPopupMenuEx
SetWindowPos
GetFocus
ClipCursor
SetParent
InvalidateRect
LoadCursorW
GetDesktopWindow
IsWindow
RedrawWindow
CreatePopupMenu
PtInRect

ole32

CoUninitialize
CoInitialize
StringFromGUID2
CoFreeUnusedLibraries
CoCreateInstance

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage

msimg32

AlphaBlend
TransparentBlt

gdi32

GetObjectType
SelectObject
BitBlt
DeleteDC
StretchBlt
LineTo
CreateDCW
CreateDIBSection
CreatePen
SetStretchBltMode
CreateCompatibleDC
CreateBitmap

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyW
RegSetValueExW
RegSetValueW
RegEnumKeyExW

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

Sections

.text
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 208KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6e360311cb1c3e908055675765ae431

Headers

File Characteristics

Imports

kernel32

user32

ole32

winmm

gdiplus

msimg32

gdi32

advapi32

comctl32

Sections

.text Size: 121KB - Virtual size: 121KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 45KB - Virtual size: 44KB

.rsr Size: 512B - Virtual size: 208KB

.text
Size: 121KB - Virtual size: 121KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 45KB - Virtual size: 44KB

.rsr
Size: 512B - Virtual size: 208KB