cac787fabb28767ee525f93d8e47fafb86a4345010ace123987c008e50773f52

Sharing

Copy URL Twitter E-mail

General

Target

cac787fabb28767ee525f93d8e47fafb86a4345010ace123987c008e50773f52
Size

1.6MB
MD5

4703e6c49f575816e5471e39f1841e58
SHA1

5358d5b97ddae769597799eb8fee764c7d2ffdf2
SHA256

cac787fabb28767ee525f93d8e47fafb86a4345010ace123987c008e50773f52
SHA512

22eadba1055049c73e2e399b96ea83c864ef60e229e4386a45081592b4cb73d75c6e31c389a2e943bd7469c101e112cadd5b41c6eefac18e8d7986689ae8de45
SSDEEP

49152:we+10v2Dspq8G2t+4cUGOBUDPpsVOcpkKDl:d+q1q8GQGPDhK26l

Score

N/A

Malware Config

Signatures

Files

cac787fabb28767ee525f93d8e47fafb86a4345010ace123987c008e50773f52
.exe windows x86

e78061518b3147ba6a6947c3adc9b9c3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharUpperA
RegisterClassW
GetMenuState
ReleaseDC
GetDC
SetCursorPos
GetKeyState
EnumClipboardFormats
GetClientRect
LoadStringW
CountClipboardFormats
GetScrollBarInfo
CharLowerA

gdi32

CreateDIBSection
SetTextAlign
AddFontResourceW
GetMiterLimit
RealizePalette
CreateBrushIndirect
SetBkColor
SetDIBColorTable
EnumFontsW

kernel32

IsValidLocale
CreateDirectoryW
lstrcmpiA
GetThreadContext
HeapCreate
CopyFileW
SetHandleInformation
SetEvent
HeapValidate
GetSystemWindowsDirectoryA
VirtualFree
EnumResourceNamesW
EscapeCommFunction
EnumResourceTypesA

ntdll

RtlUnicodeStringToAnsiString
RtlCharToInteger
RtlInitUnicodeString
memset
RtlFreeAnsiString

Exports

Exports

_SturwbjzzfxpqnIeU
_Ocqmwozmgwlohzaiobxy
_TgjfssjaeMmLYlZHofmz
?RVteetZQgdxlxgbSlumm@@YGHF@Z
?CreateDIBitmap@@YG_KPAHKK@Z
?_LvpbgaWGfdpjJnp@@YGDN@Z
?_AxvqpwoprdiweCgNhONsl@@YGXKPAE@Z
_RzvVgenbNviqpmglj

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init2
Size: 512B - Virtual size: 334B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init1
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.init0
Size: 1.6MB - Virtual size: 8.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e78061518b3147ba6a6947c3adc9b9c3

Headers

File Characteristics

Imports

user32

gdi32

kernel32

ntdll

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 3KB - Virtual size: 2KB

.init2 Size: 512B - Virtual size: 334B

.init1 Size: 6KB - Virtual size: 5KB

.init0 Size: 1.6MB - Virtual size: 8.9MB

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 21KB - Virtual size: 20KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 3KB - Virtual size: 2KB

.init2
Size: 512B - Virtual size: 334B

.init1
Size: 6KB - Virtual size: 5KB

.init0
Size: 1.6MB - Virtual size: 8.9MB

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 5KB - Virtual size: 4KB