96bef2ed4791ef17c46ad83f2dfb4cabbad6a103275124f53d9ccb87b81ebf05

General

Target

96bef2ed4791ef17c46ad83f2dfb4cabbad6a103275124f53d9ccb87b81ebf05
Size

147KB
MD5

ef8147c4eebf913e1a97f7ab35f70523
SHA1

b198ced765eb6b9b320f90691f48a7038d432e37
SHA256

96bef2ed4791ef17c46ad83f2dfb4cabbad6a103275124f53d9ccb87b81ebf05
SHA512

f07641e8885b1917d60924e68958893249ed048d208ed00f3fe7e324c7d91da0cddfa8347e7da0b59fb85aca6139c5a0a0c2067161bfca1e4d8f91e2d1ebab02
SSDEEP

3072:qxqbL23yR4LE14IHq72xO8VF5mF9eqh/0fjvi8g1X2qyOF2vxSTncjeSd:cEL23y4LE146q7qOi5mFoqhajvhgdODb

Score

N/A

Malware Config

Signatures

Files

96bef2ed4791ef17c46ad83f2dfb4cabbad6a103275124f53d9ccb87b81ebf05
.exe windows x86

62ff68273691302aca48a50a8495ccbc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoW
GetUserDefaultLCID
HeapCreate
TlsAlloc
GetProcAddress
HeapDestroy
HeapReAlloc
TlsGetValue
GetFileType
GetOEMCP
GetCurrentProcessId
UnhandledExceptionFilter
FindResourceExW
GetCPInfo
VirtualFree
GetModuleHandleA
HeapSize
SetThreadLocale
VirtualProtect
LCMapStringW
GetDateFormatA
WriteFile
DeleteCriticalSection
GetStringTypeW
IsBadWritePtr
GetPrivateProfileStructA
GetLocaleInfoA
CompareFileTime
DosDateTimeToFileTime
ExitProcess
GetTickCount
CopyFileA
TlsSetValue
HeapFree
EnumSystemLocalesA
GetModuleFileNameA
GetStdHandle
LoadLibraryA
QueryPerformanceCounter
EnterCriticalSection
VirtualAlloc
GetCurrentDirectoryA
InterlockedDecrement
VirtualQuery
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
RtlUnwind
FreeEnvironmentStringsA
GetCommandLineA
GetEnvironmentStringsW
MultiByteToWideChar
WideCharToMultiByte
GetVersionExA
CompareStringA
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
SetLastError
GetLocaleInfoW
GetACP
GetCommandLineW
GetLocalTime
SetHandleCount
IsValidCodePage
GetStringTypeA
TransmitCommChar
GetEnvironmentStrings
SetEnvironmentVariableA
GetNamedPipeHandleStateA
GetTimeZoneInformation
TlsFree
GetLastError
GetCurrentThread
InterlockedExchange
GetStartupInfoA
GetModuleFileNameW
CompareStringW
IsValidLocale
GetDiskFreeSpaceExW
lstrcmpiW
InitializeCriticalSection
GetTimeFormatA
HeapAlloc
LeaveCriticalSection
WriteConsoleOutputA
LCMapStringA
GetSystemInfo

comdlg32

LoadAlterBitmap
PageSetupDlgW
GetFileTitleA
ChooseFontW
PageSetupDlgA
ReplaceTextW
ChooseColorW
PrintDlgA
GetOpenFileNameW
FindTextW
GetSaveFileNameA
ChooseFontA

Sections

.text
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 169KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62ff68273691302aca48a50a8495ccbc

Headers

File Characteristics

Imports

kernel32

comdlg32

Sections

.text Size: 133KB - Virtual size: 133KB

.data Size: 169KB - Virtual size: 182KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 133KB - Virtual size: 133KB

.data
Size: 169KB - Virtual size: 182KB

.rsrc
Size: 4KB - Virtual size: 3KB