996920434d42132d12bf3d87f4e5c4ffc50c8bf5e624fdebcc50d9d7f79a2674

General

Target

996920434d42132d12bf3d87f4e5c4ffc50c8bf5e624fdebcc50d9d7f79a2674
Size

407KB
MD5

b72fdd8675df889f399e62a5415bac0a
SHA1

0a1e046e846955f066ada5891d53ac3dd7758d1d
SHA256

996920434d42132d12bf3d87f4e5c4ffc50c8bf5e624fdebcc50d9d7f79a2674
SHA512

9761b8142e21f38abd032bfcbae4306c2f1baed9a8ca1e4f9a99853ae6a9ffa425f6707b3dc37899cf838e8eba77143144b445fd49fae802779d748c44b42cca
SSDEEP

6144:YntqpqOW563Qcb4BvCVWWVXpG6DUOooePq9o9zvYKM8pWWqQM5aQgQ3XVYvIdv:Ynx563Zb4Bv85/XYOZLcvpM80jgePN

Score

N/A

Malware Config

Signatures

Files

996920434d42132d12bf3d87f4e5c4ffc50c8bf5e624fdebcc50d9d7f79a2674
.exe windows x86

645e06c8b57a57b6f0d2232588c6732c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
GlobalReAlloc
GetProcessShutdownParameters
WriteFile
QueryPerformanceCounter
GetLogicalDriveStringsA
HeapAlloc
LoadLibraryA
GetFileSize
ExitProcess
lstrlen
GetStartupInfoA
GlobalGetAtomNameA
GetSystemTimeAsFileTime
InterlockedExchange
GetTickCount
GetCurrentProcessId
GetModuleHandleA
EnumSystemCodePagesA
lstrlenW
RtlUnwind
TerminateProcess
GetModuleFileNameA
HeapReAlloc
EnumCalendarInfoW
GetCurrentThreadId
VirtualAlloc
GetNamedPipeHandleStateW
GetProcAddress
GlobalCompact
GetCurrentProcess
HeapFree
GetNamedPipeHandleStateA
CreateFileMappingW
OpenMutexW

comdlg32

ChooseFontA
ReplaceTextA
GetSaveFileNameW
LoadAlterBitmap

gdi32

CreateEllipticRgnIndirect

user32

FindWindowExW
CharNextA
GetScrollRange
LoadMenuW
SetCursorPos
GetMessageA
RedrawWindow
CreateMDIWindowW
LoadIconA
GetDesktopWindow
TranslateAcceleratorA
EndDeferWindowPos
GetNextDlgGroupItem
DdeKeepStringHandle
CharLowerW
GetForegroundWindow
DdeAddData
BroadcastSystemMessageW
OffsetRect
RealChildWindowFromPoint
DdeConnect
CharToOemBuffW

Sections

.text
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

645e06c8b57a57b6f0d2232588c6732c

Headers

File Characteristics

Imports

kernel32

comdlg32

gdi32

user32

Sections

.text Size: 126KB - Virtual size: 125KB

.data Size: 267KB - Virtual size: 267KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 126KB - Virtual size: 125KB

.data
Size: 267KB - Virtual size: 267KB

.rsrc
Size: 13KB - Virtual size: 12KB