e4ef84af934f2c1bd985977e5d5beccb037ace20f526a9239e2b83e4738113cc

Sharing

Copy URL

Twitter E-mail

General

Target

e4ef84af934f2c1bd985977e5d5beccb037ace20f526a9239e2b83e4738113cc
Size

318KB
MD5

2021b24d36e8b664f00704c09a203a06
SHA1

b2284a82f6948138a8939238843f863b52139058
SHA256

e4ef84af934f2c1bd985977e5d5beccb037ace20f526a9239e2b83e4738113cc
SHA512

f62d5a09715a64b9e70bdccf8a56f92412d0a5c0fc1aacb950e047b3d1722dc9df8fd1a91aaaef19aff11ed8516a8585c613c7b8fa317ce9b62a91a9a37e7186
SSDEEP

6144:xhhLq9FVM9xYD43TQz4zIXOVC+/pHabiGoWBSH:2XMLa43TQ3XIXHabvBS

Score

N/A

Malware Config

Signatures

Files

e4ef84af934f2c1bd985977e5d5beccb037ace20f526a9239e2b83e4738113cc
.exe windows x86

ea79b1ef02228b8c03eb94e6a53964bd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
WriteFile

user32

CopyRect
CreateDialogParamW
CreatePopupMenu
CreateWindowExW
DefWindowProcW
DestroyCursor
DestroyIcon
DestroyMenu
DestroyWindow
DialogBoxParamW
DragDetect
DrawEdge
DrawFrameControl
DrawTextW
EnableWindow
EndDialog
EndPaint
FillRect
FindWindowExW
FrameRect
GetActiveWindow
GetAncestor
GetCapture
GetClassInfoExW
GetClassLongW
GetClassNameW
GetDC
GetDlgItem
GetFocus
GetKeyState
GetLastActivePopup
GetMenuItemCount
GetMenuItemID
GetMenuItemInfoW
GetMessagePos
GetNextDlgTabItem
GetSubMenu
GetSysColor
GetSysColorBrush
GetSystemMenu
GetSystemMetrics
GetWindowDC
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
InflateRect
ClientToScreen
IsChild
IsDialogMessageW
IsMenu
IsWindow
IsWindowEnabled
IsWindowVisible
KillTimer
LoadAcceleratorsW
LoadBitmapW
LoadCursorW
LoadImageW
LoadMenuW
MessageBeep
MessageBoxW
ModifyMenuW
MoveWindow
NotifyWinEvent
OffsetRect
PeekMessageW
PostMessageW
PtInRect
RegisterClassExW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageW
SetActiveWindow
SetCapture
SetCursor
SetFocus
SetForegroundWindow
SetMenuDefaultItem
SetMenuItemInfoW
SetTimer
SetWindowLongW
SetWindowPlacement
SetWindowTextW
SetWindowsHookExW
ShowWindow
TrackPopupMenuEx
UnhookWindowsHookEx
UnregisterClassW
UpdateLayeredWindow
UpdateWindow
WindowFromPoint
wsprintfW
CharNextW
CharLowerW
CallWindowProcW
CallNextHookEx
BeginPaint
LoadIconW
RegisterClassExA
InvalidateRect

gdi32

GetStockObject

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW

advapi32

RegOpenKeyExA

msvcrt

memcpy

Sections

.text
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ata6
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ata5
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ata4
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ata3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ata2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea79b1ef02228b8c03eb94e6a53964bd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

msvcrt

Sections

.text Size: 4KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 303KB - Virtual size: 302KB

.ata6 Size: 1024B - Virtual size: 1000B

.ata5 Size: 1024B - Virtual size: 1000B

.ata4 Size: 1024B - Virtual size: 1000B

.ata3 Size: 1024B - Virtual size: 1000B

.ata2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 4KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 303KB - Virtual size: 302KB

.ata6
Size: 1024B - Virtual size: 1000B

.ata5
Size: 1024B - Virtual size: 1000B

.ata4
Size: 1024B - Virtual size: 1000B

.ata3
Size: 1024B - Virtual size: 1000B

.ata2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 1KB - Virtual size: 1KB