a1aaf50d566a14cc0d53ed54a60e95f49d26b0c47861d2355fdab6e37a05215c

Sharing

Copy URL

Twitter E-mail

General

Target

a1aaf50d566a14cc0d53ed54a60e95f49d26b0c47861d2355fdab6e37a05215c
Size

225KB
MD5

6a18f4dc42063a2ecf95bc02713a57ff
SHA1

52a3080b6a75b0a06ce9c3eae989785c702163d9
SHA256

a1aaf50d566a14cc0d53ed54a60e95f49d26b0c47861d2355fdab6e37a05215c
SHA512

3446166cded3444089858bad8a6683945ea00bb36806d80eb12640a600e42576c62f5354c6eb971efdb31f972ea9ed41aaa1dec3f5034e2d919f34f35596d212
SSDEEP

3072:P9wEezN0XG5RSI183ZfDGv4wwanbk0qtyER7ikPjKqgTAIueOpRYApPcCLA:FQJsSREpQ4wJqyER7NxgTvuhpCB

Score

N/A

Malware Config

Signatures

Files

a1aaf50d566a14cc0d53ed54a60e95f49d26b0c47861d2355fdab6e37a05215c
.exe windows x86

8f1dc12770450638763f9242bda0bcbe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCaretPos
SetLastErrorEx
MessageBoxExA
EnableWindow
DrawFrameControl
RemoveMenu
DestroyCursor
CheckRadioButton
LoadImageA
GetWindow
IsRectEmpty
GetScrollRange
DefWindowProcA
DestroyAcceleratorTable
TranslateAcceleratorW
LoadCursorW
UnloadKeyboardLayout
GetWindowTextLengthW
SetRect
CharNextA
LoadIconA
IsChild
SendMessageTimeoutW
IsCharAlphaNumericW
GetWindowDC
GetNextDlgTabItem
CheckDlgButton
OpenDesktopW

comctl32

ImageList_Write
CreatePropertySheetPageA
ImageList_Destroy
CreatePropertySheetPageW

kernel32

GetDateFormatW
FileTimeToSystemTime
AreFileApisANSI
HeapAlloc
IsValidLanguageGroup
SetThreadExecutionState
GetModuleHandleW
CreateRemoteThread
SetThreadPriority
GetSystemTimeAsFileTime
WaitForMultipleObjects
GetCommandLineW
FindResourceExW
SetupComm
ClearCommBreak
GetProcessHeap
GetComputerNameExA
HeapFree
GlobalAddAtomW

shlwapi

StrChrNW
StrCpyNW

gdi32

MoveToEx
DeleteDC
GetTextMetricsW
SetBkColor
SetWindowOrgEx
ExtTextOutA
TranslateCharsetInfo
StartDocW
CombineRgn
CreateFontA
StretchBlt
GetObjectA

Exports

Exports

?DufiluIOQF67uiofYIFYfUFyf@@YGKEPA_WG@Z

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f1dc12770450638763f9242bda0bcbe

Headers

File Characteristics

Imports

user32

comctl32

kernel32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 103KB - Virtual size: 103KB

.rdata Size: 70KB - Virtual size: 70KB

.mdata Size: 12KB - Virtual size: 11KB

.data Size: 36KB - Virtual size: 199KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 103KB - Virtual size: 103KB

.rdata
Size: 70KB - Virtual size: 70KB

.mdata
Size: 12KB - Virtual size: 11KB

.data
Size: 36KB - Virtual size: 199KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB