97609220a4c5041d8b7968670e0a73f06062edf303139a6b1a9b9fb052850738

Sharing

Copy URL Twitter E-mail

General

Target

97609220a4c5041d8b7968670e0a73f06062edf303139a6b1a9b9fb052850738
Size

168KB
MD5

912abfb2d72e91db865608a137c92930
SHA1

85d449056c0ff1e7b3d244b42e303817ee90eeeb
SHA256

97609220a4c5041d8b7968670e0a73f06062edf303139a6b1a9b9fb052850738
SHA512

a532dd587e78ea0ee9e6e78dd0369594a011e225ae0ec8e6326685c4ccc36842f0088d5ace61fcc7da36ac74f42c4d078f2896dfb17cb1fee7ef9e56d4b98fbe
SSDEEP

3072:XNi28l70fXhjRJLeJUblU2cVvL+nJ9qg6cCd3kOPg8nR8pxm4H1mV7131Ef:7aIZTUfv4p6B+gLR8fKV7131M

Score

N/A

Malware Config

Signatures

Files

97609220a4c5041d8b7968670e0a73f06062edf303139a6b1a9b9fb052850738
.exe windows x86

f3c2c8718b9245f291b6cd139abdc8cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ExtEscape
TextOutA
DeleteObject
CreateFontA
SetTextAlign

user32

PeekMessageA
TranslateMessage
GetWindowRect
SystemParametersInfoA
GetSystemMetrics
SetWindowPos
EndDialog
GetWindow
SetWindowTextA
GetDlgItemTextA
wsprintfA
SetDlgItemTextA
GetDlgItem
MoveWindow
WinHelpA
EndPaint
PostQuitMessage
DispatchMessageA
GetDC
ReleaseDC
BeginPaint
ClientToScreen
CheckMenuItem
DefWindowProcA
MessageBeep
GetSubMenu
TrackPopupMenu
GetFocus
DestroyWindow
DialogBoxParamA
CreateWindowExA
MessageBoxA
SendMessageA
UpdateWindow
GetMenu
RemoveMenu
IsWindowVisible
FindWindowA
IsIconic
PostMessageA
ShowWindow
SetForegroundWindow
RegisterClassA
LoadCursorA
LoadIconA
MsgWaitForMultipleObjects
LoadStringA
LoadAcceleratorsA
TranslateAcceleratorA

kernel32

GetVersion
GetLastError
CreateFileA
VirtualAlloc
ResetEvent
HeapFree
SetFilePointer
HeapAlloc
RtlUnwind
VirtualFree
WriteFile
HeapDestroy
GetFileType
HeapCreate
SetHandleCount
GetOEMCP
GetStdHandle
GetCPInfo
WideCharToMultiByte
GetACP
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
MultiByteToWideChar
TerminateProcess
ExitProcess
GetCurrentProcess
GetStartupInfoA
GetStringTypeA
GetCommandLineA
DeviceIoControl
LCMapStringA
LCMapStringW
SetStdHandle
FlushFileBuffers
GetUserDefaultLangID
GetModuleFileNameA
GlobalAlloc
GlobalLock
lstrlenA
lstrcatA
GlobalUnlock
GlobalFree
FreeLibrary
CloseHandle
lstrcpyA
GetProcAddress
GetModuleHandleA
LoadLibraryA
OpenVxDHandle
GetStringTypeW
CreateEventA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

dciman32

DCIDestroy
DCICloseProvider

winmm

timeGetTime

Sections

.text
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f3c2c8718b9245f291b6cd139abdc8cd

Headers

File Characteristics

Imports

gdi32

user32

kernel32

version

dciman32

winmm

Sections

.text Size: 34KB - Virtual size: 33KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 15KB - Virtual size: 21KB

.idata Size: 3KB - Virtual size: 2KB

.rsrc Size: 5KB - Virtual size: 4KB

.text Size: 108KB - Virtual size: 112KB

.text
Size: 34KB - Virtual size: 33KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 15KB - Virtual size: 21KB

.idata
Size: 3KB - Virtual size: 2KB

.rsrc
Size: 5KB - Virtual size: 4KB

.text
Size: 108KB - Virtual size: 112KB