d5a7b200489717d9b34f219259ab0538a3bbf1874d1f0b2d834e4f4765819647

General

Target

d5a7b200489717d9b34f219259ab0538a3bbf1874d1f0b2d834e4f4765819647
Size

68KB
MD5

0f2d490d45ad87ee6afec691eba91a40
SHA1

76e9bd93815ad3233b9de1acd14f4c4055bdd0c0
SHA256

d5a7b200489717d9b34f219259ab0538a3bbf1874d1f0b2d834e4f4765819647
SHA512

30d6dc09df7521fe0df3615a0c805f5e320f5460a1d49832d44f5da07cb895f42d6d7bfba5d9bae8dcf7f060dd5ade409e516c96be4eb3490cb2e21f4cfeaf2a
SSDEEP

1536:voCW5F389BDsMlWmOXzAGMTUSo7jOeyglSkorjxA2sp3+sc+xnfSzj:XAF3GFWmK3B/wkCmTnf4j

Score

N/A

Malware Config

Signatures

Files

d5a7b200489717d9b34f219259ab0538a3bbf1874d1f0b2d834e4f4765819647
.exe windows x86

51fbbc8b2391f49e4f3252992e1a6da5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDBCSLeadByteEx
MulDiv
DuplicateHandle
VirtualAlloc
CopyFileA
DisableThreadLibraryCalls
CreateWaitableTimerA
GetEnvironmentVariableA
GetModuleHandleA
DeleteCriticalSection
LocalHandle
LoadLibraryA
LocalReAlloc
GetTempPathW
FlushFileBuffers
CreateWaitableTimerW
GetCurrentDirectoryW
ExitProcess
GetCurrencyFormatW
GetModuleHandleW
OutputDebugStringA
DosDateTimeToFileTime
GetAtomNameW
SetFilePointerEx
GetLastError
VirtualProtect
GetModuleHandleW

msvcrt

sprintf
_mbsncpy
_putws
fputwc
_swab
floor
mblen
_safe_fprem1
_msize
_putch
atol
_CIacos
memcpy
getc
_dup2
_spawnvpe
_wsopen
_wcsnicoll
_safe_fprem
__crtCompareStringA
_purecall

user32

MessageBeep
LoadCursorFromFileA
EnableMenuItem
GetMonitorInfoW
SetWindowPos
LockSetForegroundWindow
GetWindowRect
ModifyMenuA
LoadStringA
CreateDialogParamW
DialogBoxParamW
DrawMenuBar
LoadStringW
SetDlgItemInt

gdi32

SelectObject
GetDIBits
DeleteDC
SetDIBits
Polygon
GetCurrentObject
SetViewportExtEx
CreatePatternBrush
CreateCompatibleBitmap
SetMapMode
GetRgnBox

Exports

Exports

PsOwfoowrNov
OehBpsegqClfntsRio

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

51fbbc8b2391f49e4f3252992e1a6da5

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 14KB - Virtual size: 13KB

.rsrc Size: 33KB - Virtual size: 32KB

.reloc Size: 512B - Virtual size: 72B

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 14KB - Virtual size: 13KB

.rsrc
Size: 33KB - Virtual size: 32KB

.reloc
Size: 512B - Virtual size: 72B