76bf2f7299ba549820c5324f48f960e45a16db971a403f1ab7480f865a8ef868

General

Target

76bf2f7299ba549820c5324f48f960e45a16db971a403f1ab7480f865a8ef868
Size

79KB
MD5

8d14716b6f77e023f8cf2b1af848a09a
SHA1

5d4a54ea5df6c4b6a296efdfce8eb44acfbb68b1
SHA256

76bf2f7299ba549820c5324f48f960e45a16db971a403f1ab7480f865a8ef868
SHA512

80fbbed0ded1cc134f75da372b9b3ccd9134f3dbe76d0483b2ec510a53b47b2ba14cb384122aa12e6e5b901ab92dc76ef469946e3b3eb0a16790455b9e94913d
SSDEEP

1536:Q8liXkb+qrPRJY2RAUgjw/dBQ4YsPYFmWpNMhjVJpHdFmNK3v:Q8AXkb+qzBiUkw/dtYhjUBjHdFmNI

Score

N/A

Malware Config

Signatures

Files

76bf2f7299ba549820c5324f48f960e45a16db971a403f1ab7480f865a8ef868
.cab
Keygen.exe
.exe windows x86

4581a9380e38efd100a76567c23e5937

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
LockResource
SetLastError
SizeofResource
MulDiv
GetModuleHandleA
FindResourceA
ExitProcess

user32

SetDlgItemTextA
SendMessageA
SendDlgItemMessageA
LoadIconA
GetDlgItemTextA
EndPaint
EndDialog
DialogBoxParamA
BeginPaint
GetDC
ReleaseDC

comctl32

InitCommonControls

gdi32

BitBlt
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
DeleteObject
GetDeviceCaps
DeleteDC

oleaut32

OleLoadPicture

ole32

CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal

Sections

.text
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1014B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 372B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
ppi.exe
.exe windows x86

1b63c1b4a8b40da1cce827144050341b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

MethCallEngine
ord516
ord665
ord598
ord631
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord606
ord717
ProcCallEngine
ord537
ord644
Zombie_AddRef
ord100
ord616
ord581

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4581a9380e38efd100a76567c23e5937

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comctl32

gdi32

oleaut32

ole32

Sections

.text Size: 2KB - Virtual size: 2KB

.rdata Size: 1024B - Virtual size: 1014B

.data Size: 512B - Virtual size: 372B

.rsrc Size: 23KB - Virtual size: 23KB

1b63c1b4a8b40da1cce827144050341b

Headers

File Characteristics

Imports

msvbvm60

Sections

.text Size: 52KB - Virtual size: 49KB

.data Size: - Virtual size: 1KB

.rsrc Size: 152KB - Virtual size: 149KB

.text
Size: 2KB - Virtual size: 2KB

.rdata
Size: 1024B - Virtual size: 1014B

.data
Size: 512B - Virtual size: 372B

.rsrc
Size: 23KB - Virtual size: 23KB

.text
Size: 52KB - Virtual size: 49KB

.data
Size: - Virtual size: 1KB

.rsrc
Size: 152KB - Virtual size: 149KB