d9cd7ae2555d81d1b88550d31c6daa7953f0a7daa533abbb9bea90367e83ceab

Sharing

Copy URL Twitter E-mail

General

Target

d9cd7ae2555d81d1b88550d31c6daa7953f0a7daa533abbb9bea90367e83ceab
Size

449KB
MD5

151f92c5cc51b2a5ec7a2eebdc5ab51b
SHA1

4cd1f7903016ef6c73fc66d738be11f36f37343f
SHA256

d9cd7ae2555d81d1b88550d31c6daa7953f0a7daa533abbb9bea90367e83ceab
SHA512

12b5a82657a6360a1ff5a26b7c8ece975e7f043e7e6171cb631e540220c49a1d3292124ce1935d5cec4d59ab73addab033a632947261387b23cae106fd2d7fa7
SSDEEP

6144:m4z2jYojdtQGRcuNaggxbSRgFVEehrfk3sX+efqZ/hzPheVQ9qvxC2tWJam/53Yj:l6Y0diccLgc2Rg7E81XDMGQoxLW0O9

Score

N/A

Malware Config

Signatures

Files

d9cd7ae2555d81d1b88550d31c6daa7953f0a7daa533abbb9bea90367e83ceab
.exe windows x86

013cc300a04af8100d76c34500f768e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetSaveFileNameA
ChooseColorW
ChooseColorA

user32

EnumChildWindows
SetCapture
ShowScrollBar
ExcludeUpdateRgn
IsCharLowerW
RegisterClassA
EnumDisplayDevicesA
CreateWindowStationW
IsClipboardFormatAvailable
GetComboBoxInfo
RegisterClassExA

wininet

FindNextUrlCacheEntryExA
InternetGetLastResponseInfoA
InternetSetDialStateW
CreateUrlCacheContainerW
GopherGetAttributeA

comctl32

InitCommonControlsEx

kernel32

WideCharToMultiByte
TlsGetValue
IsValidLocale
GetStringTypeW
SetHandleCount
CompareStringA
GetModuleFileNameA
GetCurrentProcessId
UnhandledExceptionFilter
GetSystemTimeAsFileTime
DeleteCriticalSection
GetStringTypeA
TerminateProcess
FreeEnvironmentStringsW
SetLastError
GetVersion
CreateMutexA
CreateEventW
Sleep
WriteConsoleW
GetEnvironmentStrings
SetUnhandledExceptionFilter
EnterCriticalSection
VirtualFree
CompareStringW
GetConsoleMode
FlushFileBuffers
ExitProcess
GetStringTypeExA
HeapCreate
LeaveCriticalSection
QueryPerformanceCounter
InterlockedExchange
MultiByteToWideChar
GetStartupInfoA
LoadResource
WriteFile
GlobalAlloc
TlsSetValue
WriteConsoleA
WritePrivateProfileStructA
IsValidCodePage
GetProcessHeap
GetCommandLineA
GetStartupInfoW
HeapReAlloc
EnumSystemLocalesA
GetFileType
GetTickCount
SetFilePointer
IsDebuggerPresent
InterlockedIncrement
ReadFile
SetStdHandle
GetACP
InitializeCriticalSection
HeapAlloc
CloseHandle
LCMapStringW
HeapSize
GetProcAddress
GetOEMCP
GetUserDefaultLCID
GetCPInfo
GetTimeZoneInformation
GetCurrentThreadId
FreeEnvironmentStringsA
FreeLibrary
FindFirstFileA
CreateFileA
HeapDestroy
SetConsoleCtrlHandler
GetModuleHandleA
GetConsoleOutputCP
HeapFree
GetCommandLineW
TlsFree
GetVersionExA
GetCurrentThread
GetDateFormatA
TlsAlloc
GetModuleFileNameW
LoadLibraryA
GetConsoleCP
GetLastError
OpenMutexA
GetLocaleInfoW
GetTimeFormatA
VirtualQuery
GetStdHandle
VirtualAlloc
RtlUnwind
InterlockedDecrement
GetCurrentProcess
SetEnvironmentVariableA
GetEnvironmentStringsW
LCMapStringA
GetLocaleInfoA

Sections

.text
Size: 219KB - Virtual size: 218KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

013cc300a04af8100d76c34500f768e0

Headers

File Characteristics

Imports

comdlg32

user32

wininet

comctl32

kernel32

Sections

.text Size: 219KB - Virtual size: 218KB

.rdata Size: 9KB - Virtual size: 27KB

.data Size: 209KB - Virtual size: 209KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 219KB - Virtual size: 218KB

.rdata
Size: 9KB - Virtual size: 27KB

.data
Size: 209KB - Virtual size: 209KB

.rsrc
Size: 10KB - Virtual size: 10KB