79ab1319388385780b4345af1c54b7b4025e43b4acdb66d03d2139e16f38198a

General

Target

79ab1319388385780b4345af1c54b7b4025e43b4acdb66d03d2139e16f38198a
Size

144KB
MD5

6c6c58269aa3655b836f9b9e81070a0e
SHA1

29d8fddffd14929ed759d812293d5cc67ae98e37
SHA256

79ab1319388385780b4345af1c54b7b4025e43b4acdb66d03d2139e16f38198a
SHA512

50cd1caa4469b284e3718ca4ea4a0f8df4fcdf58cf0e502c16c861d21e2d55f55425e9c390c001c02c7f81e7ac59f7533e86666a6be69a6d69ed9b448b383a97
SSDEEP

3072:2dXXAbWZLXew7dtqvEej1sVcJJj7qimeeiMGJ:2dHAaRukbqcC1sVGZ75me9J

Score

N/A

Malware Config

Signatures

Files

79ab1319388385780b4345af1c54b7b4025e43b4acdb66d03d2139e16f38198a
.exe windows x86

03e6a9100e383b7fedb094b003e9b4f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
SetStdHandle
lstrcpyA
GetModuleHandleA
EnumSystemLocalesW
OpenWaitableTimerA
BeginUpdateResourceW
GetCurrentProcessId
OpenEventA
EnterCriticalSection
LocalUnlock

msvcrt

_controlfp
_nextafter
is_wctype
_except_handler3
_longjmpex
__p__fmode
fprintf
_XcptFilter
__setusermatherr
_initterm
_mbsnbcoll
__set_app_type
_strtoi64
_mbsnbcmp
__p__commode
_fgetwchar
_exit
_mbcjmstojis
_mbsninc
_ismbcprint
__getmainargs
exit
_acmdln
_adjust_fdiv
_findclose
_ultoa
_utime64

gdi32

GetWorldTransform
SetFontEnumeration
GetFontResourceInfoW
WidenPath
CreateEllipticRgn
GetTextColor
UnrealizeObject
SetColorAdjustment
CreateDIBitmap
PlgBlt
ScaleViewportExtEx

user32

AttachThreadInput
DefMDIChildProcW
BeginDeferWindowPos
DdeDisconnect
GetMenuInfo
ShowCaret
ActivateKeyboardLayout
SetMessageQueue
FillRect
UpdateLayeredWindow

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03e6a9100e383b7fedb094b003e9b4f0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

Sections

.text Size: 82KB - Virtual size: 81KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 512B - Virtual size: 88KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 82KB - Virtual size: 81KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 512B - Virtual size: 88KB

.rsrc
Size: 7KB - Virtual size: 7KB