a56442c2de83f2d56ec30d4a556fbcfcf8d791b94e1dec7158df1664a5a95a4b

Sharing

Copy URL Twitter E-mail

General

Target

a56442c2de83f2d56ec30d4a556fbcfcf8d791b94e1dec7158df1664a5a95a4b
Size

51KB
MD5

b18787ac64903528c0ae17f74cd0ae33
SHA1

2bac417311587fe9693d3e8be32682662862caec
SHA256

a56442c2de83f2d56ec30d4a556fbcfcf8d791b94e1dec7158df1664a5a95a4b
SHA512

458f2a42254a51fae3e6180dc3cdd87f21a4b5a0635f0b26f917b487348410529e1a4bb6ca087ed8056e2440636dff46fbba1939b4de9fb5dc9771f0574cf1fb
SSDEEP

768:BWK3HfbDliyVWPi+m/1h6djVARzEkaX0aaa4manAaaaaaaaaaaaaaaaaaaaaaaa3:sYDDlilm/r6JV8zhoPJDGJDLTB

Score

N/A

Malware Config

Signatures

Files

a56442c2de83f2d56ec30d4a556fbcfcf8d791b94e1dec7158df1664a5a95a4b
.exe windows x86

a3ff14935cf6f4bd05d328485995af08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

OleDuplicateData
CoInitialize
CoRevokeClassObject
OleSetClipboard
StgIsStorageILockBytes
CoUninitialize
StgOpenStorage
StgIsStorageFile

user32

PostQuitMessage
ValidateRect
ShowOwnedPopups
GetAsyncKeyState
GetMessageTime
wvsprintfA
GetMessageA
CharUpperA
DestroyMenu

comdlg32

GetOpenFileNameA
GetSaveFileNameA
PrintDlgA

kernel32

SetFileAttributesA
LCMapStringA
DosDateTimeToFileTime
UnhandledExceptionFilter
SetEvent
EnumSystemCodePagesW
GetPrivateProfileIntW
CreateEventW
DeleteFileA
LeaveCriticalSection
GlobalDeleteAtom
SystemTimeToFileTime
UnregisterWaitEx
GetEnvironmentVariableA
CopyFileA
WriteFile
CreateProcessA
QueryDosDeviceA
GetCommandLineA
SetEndOfFile
WaitForMultipleObjects
EnumResourceTypesA
DeleteCriticalSection
IsValidLanguageGroup
FlushFileBuffers
GetCurrentThreadId
FindResourceExA
GetFileAttributesA
GetShortPathNameW
FindFirstFileA
Sleep
FindNextFileA
SetLastError
GetCurrentProcess
GetCurrentDirectoryA
FormatMessageA
GetProcessHeap
GetFileSize
GetTempFileNameA
GetNumberFormatA
GetSystemTime
QueryPerformanceCounter
TerminateProcess
SetFileTime
LocalFileTimeToFileTime
LCMapStringW
EnterCriticalSection
GetDiskFreeSpaceA
GlobalAddAtomA
GetModuleFileNameA
CreateFileA
OpenEventA
GetCurrentProcessId
GetVersionExA
CopyFileExW
GlobalGetAtomNameA
SetEnvironmentVariableA
GetDriveTypeA
FindClose
GlobalFindAtomA
MoveFileA
GetExitCodeProcess

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
ImmGetCompositionStringW
ImmNotifyIME

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 23KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3ff14935cf6f4bd05d328485995af08

Headers

File Characteristics

Imports

ole32

user32

comdlg32

kernel32

imm32

Sections

.text Size: 14KB - Virtual size: 13KB

.data Size: 6KB - Virtual size: 9KB

.rsrc Size: 7KB - Virtual size: 6KB

.edata Size: 23KB - Virtual size: 39KB

.text
Size: 14KB - Virtual size: 13KB

.data
Size: 6KB - Virtual size: 9KB

.rsrc
Size: 7KB - Virtual size: 6KB

.edata
Size: 23KB - Virtual size: 39KB