cfda9f655839259f9fd6d406f530becb0856942ee8fbd312e24221c0e9129946

Sharing

Copy URL

Twitter E-mail

General

Target

cfda9f655839259f9fd6d406f530becb0856942ee8fbd312e24221c0e9129946
Size

192KB
MD5

8e008834cfd20d39a7f3f0ee4535ef07
SHA1

b615d934e8af9f97bc7602ccd3b50a79bc89fcb9
SHA256

cfda9f655839259f9fd6d406f530becb0856942ee8fbd312e24221c0e9129946
SHA512

ce3981053e34abafeab611686a1ebcf3aec0672502cc82bb07f23a7bedd16386c78d188a097a987ed6e3597340d5e2d26485ead452530c9b391d3f4ea8af4df5
SSDEEP

3072:jgFwYlPQaNTNuUixgAcc6wOVG/mQF6PozzdeAbwnACM2cOBg0xPuTt63tFTR:UFRyaN5uEBwe0mQ5MAgHg0xWT8FTR

Score

N/A

Malware Config

Signatures

Files

cfda9f655839259f9fd6d406f530becb0856942ee8fbd312e24221c0e9129946
.dll windows x86

790cee125916e1a036b6c45a3ea97ee3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextW
PrintDlgW
GetOpenFileNameW
GetSaveFileNameW

kernel32

GetModuleHandleA
GetTempFileNameA
CompareFileTime
VirtualQuery
CreateWaitableTimerW
GetOEMCP
GetModuleFileNameA
GetPriorityClass
FindFirstFileW
GlobalMemoryStatusEx
WaitForMultipleObjectsEx
GetVersion
TerminateThread
SleepEx
CreateFileMappingA
LocalLock
DeleteFileW

msvcrt

swscanf
clock
getenv
memset
strpbrk
_controlfp
__set_app_type
__p__fmode
__p__commode
_amsg_exit
ungetc
_initterm
wcstombs
ftell
_acmdln
exit
strcoll
strcpy
_ismbblead
_XcptFilter
_exit
_cexit
__setusermatherr
__getmainargs
wcstok

user32

SetScrollRange
GetShellWindow
SetActiveWindow
MapVirtualKeyA
GetKeyState
WindowFromPoint
IsDialogMessageW
SetCursor
SetTimer
LoadCursorA
DestroyMenu
GetWindowDC
RegisterHotKey
GetDlgItem
SystemParametersInfoA
CheckMenuRadioItem
SetWindowTextW
SendMessageTimeoutW
SetRect
TrackPopupMenu
ScreenToClient
ReleaseDC
EnumWindows
GetCursorPos
ScrollWindowEx
LoadIconW
ShowWindow
InvalidateRect
MessageBoxExA
CreateCursor
GetSystemMetrics
GetUserObjectInformationA
ReplyMessage
PtInRect
wvsprintfA
SetWindowLongW

gdi32

CreateRoundRectRgn
ExtTextOutW
CreatePolygonRgn
CreateFontIndirectW
GetTextExtentExPointW
CombineRgn
GetLayout
RestoreDC
StretchBlt
GetTextExtentPoint32A
CreateDIBitmap
SetViewportExtEx
GetDIBColorTable
GetStockObject

Exports

Exports

?RtlTaskExW@@IJIF@X

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 512B - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tcode
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data3
Size: 512B - Virtual size: 377B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

790cee125916e1a036b6c45a3ea97ee3

Headers

File Characteristics

Imports

comdlg32

kernel32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.import Size: 512B - Virtual size: 404B

.rdata Size: 2KB - Virtual size: 2KB

.data1 Size: 512B - Virtual size: 44B

.data2 Size: 512B - Virtual size: 44B

.tcode Size: 13KB - Virtual size: 13KB

.data3 Size: 512B - Virtual size: 377B

.data Size: 2KB - Virtual size: 116KB

.rsrc Size: 155KB - Virtual size: 154KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 13KB

.import
Size: 512B - Virtual size: 404B

.rdata
Size: 2KB - Virtual size: 2KB

.data1
Size: 512B - Virtual size: 44B

.data2
Size: 512B - Virtual size: 44B

.tcode
Size: 13KB - Virtual size: 13KB

.data3
Size: 512B - Virtual size: 377B

.data
Size: 2KB - Virtual size: 116KB

.rsrc
Size: 155KB - Virtual size: 154KB

.reloc
Size: 2KB - Virtual size: 1KB