925febf3613a8f51bc70c78c312618ec0af986b6e675d439cc4905bf05002056

General

Target

925febf3613a8f51bc70c78c312618ec0af986b6e675d439cc4905bf05002056
Size

125KB
MD5

42ef6bc13d07d98558d9fd92a262e5b3
SHA1

fa5f2ea106487a466d4709c23e6cd9596d378d23
SHA256

925febf3613a8f51bc70c78c312618ec0af986b6e675d439cc4905bf05002056
SHA512

3c9e7aa690684d63e00882cc943dfc559155017d2b61c96fc1d627cff3decbcf988b1d7e6ad6fa3d8e3b74d135d6c578a7a87f58557cc5f525f5fb0b18c80ca5
SSDEEP

3072:PqgyQxPOZcGSto5EmBVEyYwfJcG7fLnUJlIR2:yPQhvGiOEmVzJBcG7fDUW2

Score

N/A

Malware Config

Signatures

Files

925febf3613a8f51bc70c78c312618ec0af986b6e675d439cc4905bf05002056
.exe windows x86

4ce3e1fb64534f12bc793d05eb913c81

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Write
DestroyPropertySheetPage
ImageList_LoadImageW
ImageList_Destroy

shlwapi

StrCmpW

gdi32

RoundRect
SaveDC
PolyBezier
SetViewportOrgEx
SetROP2
AddFontResourceW
Rectangle
CreateFontW

kernel32

GetEnvironmentStringsW
OpenFileMappingA
HeapFree
GetSystemTime
SetFilePointer
FreeEnvironmentStringsW
FindResourceW
TransactNamedPipe
SetStdHandle
IsValidCodePage
CreateWaitableTimerA
GlobalDeleteAtom
CloseHandle
lstrlenA
GetConsoleOutputCP
SetConsoleScreenBufferSize
lstrcpyA

user32

IsCharAlphaA
MessageBoxExW
SetCursorPos
GetMenu
UpdateWindow
PostThreadMessageA
IsWindowVisible
GetDlgItemTextW
CharNextExA
RegisterHotKey
IsWindowEnabled
GetClassLongW

ntdll

memset

Exports

Exports

?AqwnkQzjxfyuIusczBwvic@@YGNI@Z
?Unhmlqug@@YGIE@Z
?Hvlborxt@@YGMIE@Z
?VsqmpzHgrqzolvJojn@@YGPAMPAEE@Z
?_RMrUbbsyjhnBmEqej@@YGFDPAK@Z

Sections

.text
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ce3e1fb64534f12bc793d05eb913c81

Headers

File Characteristics

Imports

comctl32

shlwapi

gdi32

kernel32

user32

ntdll

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 23KB

.data Size: 5KB - Virtual size: 85KB

.rsrc Size: 92KB - Virtual size: 92KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 23KB - Virtual size: 23KB

.data
Size: 5KB - Virtual size: 85KB

.rsrc
Size: 92KB - Virtual size: 92KB

.reloc
Size: 2KB - Virtual size: 1KB