f9fb8a1f14c6c53443a51dd1a1fa5167a1b2b081aa3f2b6f0e6b6bc597c54fba

Sharing

Copy URL Twitter E-mail

General

Target

f9fb8a1f14c6c53443a51dd1a1fa5167a1b2b081aa3f2b6f0e6b6bc597c54fba
Size

130KB
MD5

ef3d0eec38195b3d00d20f91a244e500
SHA1

53e1eb33ad4143582a33237ba03825c29d213c8a
SHA256

f9fb8a1f14c6c53443a51dd1a1fa5167a1b2b081aa3f2b6f0e6b6bc597c54fba
SHA512

8ae1659ae01ab47e3ac0b18d2148505b067df445512dfdb99dc17099da7aa363448a65241d0d13f9fb157bf8f02013e257f2c4dc062955b2d091f01403b01087
SSDEEP

3072:V69jETwL5kWNz6AchzuouwZ5DCFpeJmP/ZA7QgFurKpIBNZxhfn:AVEstkWEAqzusZtu/PRA9ArPTnF

Score

N/A

Malware Config

Signatures

Files

f9fb8a1f14c6c53443a51dd1a1fa5167a1b2b081aa3f2b6f0e6b6bc597c54fba
.exe windows x86

7e43c3a34dce4dfc0eddc615cfa53986

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

IsTextUnicode

user32

IsCharAlphaNumericW
GetWindowTextA
CreateAcceleratorTableW
GetKeyNameTextW
AppendMenuW
VkKeyScanW
SetDlgItemTextA
GetKeyboardLayoutNameW
GetNextDlgGroupItem
CreateWindowExA
MessageBoxExW
CreateWindowExW
EnableWindow
CreateMenu
GetMenuStringW
SetMenu
RegisterClassExW
GetClassInfoExW
GetCaretPos
OpenIcon
DefWindowProcW
GetKeyState
SetSysColors
GetScrollPos
RegisterWindowMessageW
RegisterHotKey
CharLowerW
ScreenToClient
DefDlgProcW
SwitchToThisWindow
OemToCharA
SendInput
CharNextExA
CharPrevW
InvalidateRgn
GetShellWindow
GetSystemMetrics
SetRectEmpty
IsCharAlphaW
DialogBoxParamW
LoadImageW
CreatePopupMenu
CallWindowProcW
CharUpperA
TrackPopupMenu
GetWindowRect
GetActiveWindow
VkKeyScanA

comdlg32

FindTextW
PageSetupDlgW
ChooseColorW
GetSaveFileNameW

gdi32

SetRectRgn
EndPage
StartDocW
TranslateCharsetInfo
SetWindowOrgEx
SetBkColor
DPtoLP
PtVisible
GetRgnBox
GetDIBits
SetPaletteEntries
GetTextCharsetInfo
RestoreDC
GetClipBox
SelectPalette
GetViewportOrgEx
DeleteDC
GetSystemPaletteUse
StretchBlt
GetStockObject
SetViewportExtEx
PtInRegion

msvcrt

__argc

kernel32

GetCommandLineW
GlobalDeleteAtom
QueryDepthSList
CreateThread
LCMapStringW
FormatMessageA
GetModuleFileNameW
GlobalGetAtomNameW
GlobalLock
lstrcmpA
GetModuleHandleA
ClearCommBreak
GlobalFree
GetExitCodeThread
GlobalMemoryStatus
CreateFileW
HeapSize
SetThreadContext
InitializeCriticalSection
GetWindowsDirectoryW
VirtualFree
FindCloseChangeNotification
FileTimeToSystemTime
LoadLibraryW
GetTempPathA

Exports

Exports

?GetContextSmidjhsj@@YGPA_WPA_WK@Z

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ctext
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e43c3a34dce4dfc0eddc615cfa53986

Headers

File Characteristics

Imports

advapi32

user32

comdlg32

gdi32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.ctext Size: 13KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 79KB

.rdata Size: 20KB - Virtual size: 19KB

.rsrc Size: 42KB - Virtual size: 42KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 49KB - Virtual size: 49KB

.ctext
Size: 13KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 79KB

.rdata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 42KB - Virtual size: 42KB

.reloc
Size: 1KB - Virtual size: 1KB