78f2ac541e5669640dd5e615fcc9923f6ee70cec52b5713b0aefe9fb7419aa46

Sharing

Copy URL Twitter E-mail

General

Target

78f2ac541e5669640dd5e615fcc9923f6ee70cec52b5713b0aefe9fb7419aa46
Size

205KB
MD5

3c31365d8bc00e0ce7b24bd2b5806d8d
SHA1

44c018508f03b084d5a530165282bd1c69d51dc5
SHA256

78f2ac541e5669640dd5e615fcc9923f6ee70cec52b5713b0aefe9fb7419aa46
SHA512

1af9ec5a5d20453d72f4479afabe14ee72f3942c1d4e0427d4fb3cdb49a6e0537d36ea0b885e0fc31c6161ca6bcf39c1c177c6cb6d2f26975fbce5ded543e86b
SSDEEP

3072:81aveV8RRawEiqyIsO7B6N5vee+LMLpb5RX4gXCGz+f0hRV37NDxn2vlZLFpxqet:JeV8RnRfiIp5RIgish/LnWppxqATs

Score

N/A

Malware Config

Signatures

Files

78f2ac541e5669640dd5e615fcc9923f6ee70cec52b5713b0aefe9fb7419aa46
.exe windows x86

01947e0f5e1f0aa9ae3c0089cef24d16

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeA
HeapSize
GetStringTypeW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
SetStdHandle
GetProcAddress
LoadLibraryA
GetModuleHandleA
CallNamedPipeA
FindNextFileA
GetCommandLineA
GetSystemTimeAsFileTime
GetNumberFormatW
QueryPerformanceCounter
SetFilePointer
FlushFileBuffers
InterlockedExchange
RtlUnwind
HeapReAlloc
GetOEMCP
GetACP
GetCPInfo
GetLocaleInfoA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapAlloc
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
CloseHandle
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
GetStartupInfoA
GetVersionExA
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
GetLastError
LCMapStringW
ExitProcess
TerminateProcess
GetCurrentProcess
WriteFile

user32

GetMenuItemCount
GetWindowContextHelpId
CreateWindowStationW
IMPGetIMEA
PeekMessageA
SendIMEMessageExA
ChangeDisplaySettingsA

gdi32

GetGlyphIndicesA
OffsetViewportOrgEx
SetBoundsRect
ScaleViewportExtEx
CreateSolidBrush
GetMetaFileA
GetRelAbs
ScaleWindowExtEx
GetFontResourceInfoW

oleaut32

VarDateFromDisp
BSTR_UserUnmarshal
VarBstrFromDisp
OleTranslateColor
SafeArrayAccessData
VARIANT_UserFree
SysAllocStringByteLen
LoadTypeLi
VarDateFromDec
OACreateTypeLib2
VarDecDiv
VarDecAbs
SafeArrayCopyData
RevokeActiveObject

shlwapi

StrTrimW
UrlIsA
StrRStrIA
PathRemoveBackslashA
StrFromTimeIntervalA
ChrCmpIA
UrlGetLocationW
UrlCombineW
PathSearchAndQualifyW
StrChrIW
PathRemoveFileSpecA
SHOpenRegStreamW
StrToIntW
PathRenameExtensionA

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 133KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01947e0f5e1f0aa9ae3c0089cef24d16

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

oleaut32

shlwapi

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 133KB - Virtual size: 133KB

.data Size: 33KB - Virtual size: 243KB

.rsrc Size: 512B - Virtual size: 464B

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 133KB - Virtual size: 133KB

.data
Size: 33KB - Virtual size: 243KB

.rsrc
Size: 512B - Virtual size: 464B