a111b55ae277b715cda8bf409f2a8f9ac9b52b2fc6462d418221506f1fffeb61

General

Target

a111b55ae277b715cda8bf409f2a8f9ac9b52b2fc6462d418221506f1fffeb61
Size

132KB
MD5

ab84f80cd6f56c5918d846f9cc0a5fca
SHA1

58eee17735e69fbfd7787f472b64b856e7b48148
SHA256

a111b55ae277b715cda8bf409f2a8f9ac9b52b2fc6462d418221506f1fffeb61
SHA512

16f6780b20c062757dafb69b0ae524d9c927b13ba23962a89eef4bfbabd2816755907c702aa08bfb8dffa92f997e1c4ff6a0607e3e541eb42df9fb5576a435ac
SSDEEP

3072:rGaYysoDLqPd8LzpQU3+t4nDLfRfTGKvub1u30lg+fTSfL1Cm:myVDLqdwpn+YDL9TVsgklpTt

Score

N/A

Malware Config

Signatures

Files

a111b55ae277b715cda8bf409f2a8f9ac9b52b2fc6462d418221506f1fffeb61
.exe windows x86

ce3b331ada8047383615d1d1556540a1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError
ChooseFontW
ChooseColorW

comctl32

ImageList_Read
ImageList_Destroy
ImageList_Remove
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_GetImageCount
ImageList_Write

msimg32

GradientFill
AlphaBlend

kernel32

HeapSize
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetModuleHandleA
VirtualQuery
InterlockedExchange
RtlUnwind
LoadLibraryA
CreateProcessW
GetCurrentThreadId
RemoveDirectoryW
MoveFileExW
GetCurrentProcessId
GetFileTime
GetModuleFileNameW
SetTapePosition
VirtualFree
VirtualAlloc
HeapFree
HeapAlloc
Sleep
LockFile
UnlockFile
GetLastError
CloseHandle
GetFileType
CreateFileW
GetStartupInfoW
GetVersionExA
HeapDestroy
HeapCreate
HeapReAlloc
IsBadWritePtr
ExitProcess
GetProcAddress
TerminateProcess
GetCurrentProcess
SetStdHandle
SetFilePointer
SetHandleCount
GetStdHandle
GetStartupInfoA
SetEndOfFile
ReadFile
WriteFile
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 556KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce3b331ada8047383615d1d1556540a1

Headers

DLL Characteristics

File Characteristics

Imports

comdlg32

comctl32

msimg32

kernel32

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 40KB - Virtual size: 37KB

.data Size: 28KB - Virtual size: 556KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 40KB - Virtual size: 37KB

.data
Size: 28KB - Virtual size: 556KB

.reloc
Size: 8KB - Virtual size: 7KB