6d9a828c6c51fba6e49f3de6fa5ebaa9649e12728b56438e93b8737170036a5d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

6d9a828c6c51fba6e49f3de6fa5ebaa9649e12728b56438e93b8737170036a5d
Size

165KB
MD5

bc05fe4415d2941e59c4ecdab27cd4e9
SHA1

4b3755c179eabdc708b4f34b9e58eed60e84cb58
SHA256

6d9a828c6c51fba6e49f3de6fa5ebaa9649e12728b56438e93b8737170036a5d
SHA512

efb953434f5210555def946e6397ddcdeae8c9c6f5da0aebbfaf6bcec6bfefbfe7257d63f6a476014530516f087bb9e7bd9eb324be8beff6752fcc49ff79233f
SSDEEP

3072:Lo5V3dCWi14SFMMnP0HOw9kzA38mtuJUgWQd4sY/IRcpU5b+rwc/:LoT3dCWi14S9nP0HPk0smgm9r1/qTCw6

Score

N/A

Malware Config

Signatures

Files

6d9a828c6c51fba6e49f3de6fa5ebaa9649e12728b56438e93b8737170036a5d
.exe windows x86

9ee84a68f9d0934f85fd22c972a3cf73

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNIA
StrCSpnA

kernel32

GetWindowsDirectoryW

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
?BallHeight**YGPAXU_POINTL***Z
?DestroyTarget@@YGPAXU_POINTL@@@Z
?HeartPulse@@YGPAXU_POINTL@@@Z
?RedirectPointer@@YGPAXU_POINTL@@@Z
?SomethingUse@@YGPAXU_POINTL@@@Z

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ