a1ac25a460023dc00ce411cf4fcc97e3c0693ffdc2e67b7a3dc2c632ab4409df

Sharing

Copy URL

Twitter E-mail

General

Target

a1ac25a460023dc00ce411cf4fcc97e3c0693ffdc2e67b7a3dc2c632ab4409df
Size

152KB
MD5

70332ae325a9f7ccece97c4b4e430a87
SHA1

428d17a662d5cca7a544c3a09f6a2d15277b1b9d
SHA256

a1ac25a460023dc00ce411cf4fcc97e3c0693ffdc2e67b7a3dc2c632ab4409df
SHA512

4597457b2d36b9fb04fa3a59c0e4367b76dd5923250e2ec5563b218ba82b1255dd82eac7318e25167625b026d6dab51b886d4cde9f3b4e1291d70ee9827267b7
SSDEEP

3072:oJILzTCTSMLsO9Fix11p69BdSwgfq/aHXhMlpMVO9:uIb6h3FiP103dz/IhVo

Score

N/A

Malware Config

Signatures

Files

a1ac25a460023dc00ce411cf4fcc97e3c0693ffdc2e67b7a3dc2c632ab4409df
.exe windows x86

5b8ca43c34d2803e8336efd28b052b57

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

_wcslwr

gdi32

EnumFontFamiliesW
RealizePalette
RectInRegion
StretchBlt
GetCharWidth32W
MoveToEx
CreateCompatibleDC

shlwapi

StrCatBuffW

kernel32

GetSystemInfo
CancelIo
OpenFile
GetComputerNameA
lstrcatW
LoadResource
GetThreadContext
GetFileInformationByHandle
MulDiv
WideCharToMultiByte
GetFileAttributesW
IsDBCSLeadByteEx

comdlg32

GetSaveFileNameW
CommDlgExtendedError
ChooseFontW
PrintDlgW

user32

TranslateMessage
CharLowerW
ShowStartGlass
GetWindowTextW
GetCaretPos
SetMenu
SetMenuDefaultItem
BringWindowToTop
SetSysColorsTemp
GetShellWindow
GetWindowLongW
EnumThreadWindows
IsCharAlphaNumericW

Exports

Exports

?Mklylmcqirgrvzwhskkf@@YGPAXJH@Z
?_ThuomlkMnwthqpqnxdr@@YGDKPAF@Z
?WfdaLdujwg@@YGXHH@Z
?ShrPoktrwCfcDFeldaue@@YGPAJPAFPAI@Z
?_Imjywyo@@YGPAJHD@Z
?_CreateRectRgnIndirect@@YG_KPBUtagRECT@@@Z

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.DATA
Size: 7KB - Virtual size: 231KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.raw0
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b8ca43c34d2803e8336efd28b052b57

Headers

File Characteristics

Imports

ntdll

gdi32

shlwapi

kernel32

comdlg32

user32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.DATA Size: 7KB - Virtual size: 231KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 2KB

.raw0 Size: 87KB - Virtual size: 87KB

.rsrc Size: 19KB - Virtual size: 18KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 27KB - Virtual size: 27KB

.DATA
Size: 7KB - Virtual size: 231KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 2KB

.raw0
Size: 87KB - Virtual size: 87KB

.rsrc
Size: 19KB - Virtual size: 18KB

.reloc
Size: 2KB - Virtual size: 2KB