934e8b8d25ddd175c3ea27091c413807a125d8fd6ef571bf893dc8959563b7d6

General

Target

934e8b8d25ddd175c3ea27091c413807a125d8fd6ef571bf893dc8959563b7d6
Size

165KB
MD5

b0b1a8ec61318f709b1a67795f2a96d1
SHA1

4031294114bdca88bd1d85b216f5a721f20a193e
SHA256

934e8b8d25ddd175c3ea27091c413807a125d8fd6ef571bf893dc8959563b7d6
SHA512

e830ddfecff6626ecbed8b93abe027931ae6e0900e9c3ffdcdf0c5e5b85165108a30ba29966ab66b454660611e793f2d552be2d28b745522a191f7eca3ffdd84
SSDEEP

3072:KMRdjrvXbbvwiGSSMO0XmiciK6hRpUYOruWajzIdzxxV:KEdjrvbbLRSMOll612NdzTV

Score

N/A

Malware Config

Signatures

Files

934e8b8d25ddd175c3ea27091c413807a125d8fd6ef571bf893dc8959563b7d6
.exe windows x86

2c3aa7f27cdf9d573ce5ab025921cb68

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
DeleteObject
GetTextExtentPointA
GetDeviceCaps
GetTextMetricsA
CreateFontIndirectA

newdev

UpdateDriverForPlugAndPlayDevicesW

kernel32

lstrlenW
GetCPInfoExW
HeapSize
QueryPerformanceCounter
UnhandledExceptionFilter
EnterCriticalSection
TlsGetValue
GetLocaleInfoA
InitializeCriticalSection
GetStartupInfoA
GetTickCount
GetEnvironmentStrings
GetStdHandle
InterlockedIncrement
EnumResourceTypesA
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetACP
GetFileType
GetThreadLocale
WideCharToMultiByte
InterlockedExchange
GetOEMCP
GetLastError
SetHandleCount
RaiseException
GetComputerNameW
DeleteCriticalSection
GetCPInfo
MultiByteToWideChar
LeaveCriticalSection
FreeEnvironmentStringsW
WriteFile
GetVersionExA
TlsSetValue
GetCurrentProcessId

shell32

SHGetFolderPathW

msimg32

AlphaBlend
TransparentBlt

ole32

CoGetMalloc
CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c3aa7f27cdf9d573ce5ab025921cb68

Headers

File Characteristics

Imports

gdi32

newdev

kernel32

shell32

msimg32

ole32

Sections

.text Size: 95KB - Virtual size: 95KB

.tls Size: 2KB - Virtual size: 1KB

.data Size: 66KB - Virtual size: 65KB

.reloc Size: 1024B - Virtual size: 104KB

.text
Size: 95KB - Virtual size: 95KB

.tls
Size: 2KB - Virtual size: 1KB

.data
Size: 66KB - Virtual size: 65KB

.reloc
Size: 1024B - Virtual size: 104KB