fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759

Sharing

Copy URL

Twitter E-mail

General

Target

fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
Size

181KB
MD5

4a1333a9ba74d9c0f4ad201e96ede7d7
SHA1

c7d19bb7325942d05857ae5fdc83a432bbc95222
SHA256

fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
SHA512

171964bd40441b70801eaba65b24a92bd42048f9d9f3ef5b0bb488d259250e7f7e24807d86a333026e714171f921c89720ff60b41dd1ca0b519e159508e68f0a
SSDEEP

3072:ZW9/Prtfh9XRu3tCGz0v25A4qs83uJ7vculwWYbDSHlegZoC+w0uMsi0q1jS7j7X:M9/PPu3wGzo25HqZU7UIwQHln/FMsipU

Score

N/A

Malware Config

Signatures

Files

fb8cbdf6f88f40ae7d0baa1ae25408626a572dfb06a19ddad7a519be0ae7a759
.exe windows x86

3d89b1f927a741dd7f947a24f917f47f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyAcceleratorTable
GetKeyboardType
CreateIconIndirect
DialogBoxParamA
GetSysColor
GrayStringW
ShowCaret
AdjustWindowRect
IsCharAlphaA
GetNextDlgTabItem
EnumChildWindows
GetMenuItemInfoW
GetDlgItemInt
CreateAcceleratorTableW
PostThreadMessageW

kernel32

GetLocaleInfoA
GetTickCount
GlobalAddAtomA
LocalFree
LockResource
FindResourceExA
DeleteCriticalSection
FileTimeToDosDateTime
LocalAlloc
TryEnterCriticalSection
ConnectNamedPipe
VirtualAlloc
HeapValidate
AddAtomW
MulDiv

ole32

CoGetCurrentProcess

rpcrt4

CreateProxyFromTypeInfo
CreateStubFromTypeInfo

gdi32

GetNearestColor
SelectClipRgn
ScaleWindowExtEx
LPtoDP
GetObjectW
GetROP2

Exports

Exports

EnumKeyboardExW

Sections

.text
Size: 149KB - Virtual size: 148KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Agio
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.oypac
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.jibmed
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d89b1f927a741dd7f947a24f917f47f

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

ole32

rpcrt4

gdi32

Exports

Exports

Sections

.text Size: 149KB - Virtual size: 148KB

.Agio Size: 4KB - Virtual size: 7KB

.oypac Size: 512B - Virtual size: 268B

.jibmed Size: 21KB - Virtual size: 21KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 149KB - Virtual size: 148KB

.Agio
Size: 4KB - Virtual size: 7KB

.oypac
Size: 512B - Virtual size: 268B

.jibmed
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 4KB - Virtual size: 4KB