c15401f4610f179be4e9569b11f28f89b0834062fce386430898dfb16595ee20

Sharing

Copy URL Twitter E-mail

General

Target

c15401f4610f179be4e9569b11f28f89b0834062fce386430898dfb16595ee20
Size

220KB
MD5

a83ba148c395edbc6dbd78c1c1969bb2
SHA1

2b25a94e75504066cfbed93b769e9ca3efd5d41a
SHA256

c15401f4610f179be4e9569b11f28f89b0834062fce386430898dfb16595ee20
SHA512

5600bc816c06830a11c54db70ae1e409f9c497e3f31e61b448a24768dba3f0e034ee5b7c098bc6ff297ca12ef75f950d8939e5a0f596859e415d01e69c1aba81
SSDEEP

6144:RpGB1NhJXUhaGz/yk0kOngQzXcsgGCULZkO589G:RpGB1NhJ4r0XMsgGCoZNIG

Score

N/A

Malware Config

Signatures

Files

c15401f4610f179be4e9569b11f28f89b0834062fce386430898dfb16595ee20
.exe windows x86

0a2a7381ea3de10f5e6a86992c914c20

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
ChooseFontW
CommDlgExtendedError
GetSaveFileNameW

user32

DrawFrameControl
GetUpdateRect
LoadIconA
RemovePropW
GetMessageTime
IsChild
IsWindowUnicode
WaitMessage
GetDlgItem
GetTopWindow
SendDlgItemMessageA
CharUpperBuffA
EnumThreadWindows
LockWindowUpdate
SystemParametersInfoW
WaitForInputIdle
IsMenu
MapVirtualKeyA
ChildWindowFromPoint
GetAltTabInfoW
SendNotifyMessageW
DialogBoxIndirectParamW
EnableScrollBar
ShowCaret
ChildWindowFromPointEx
keybd_event
MapVirtualKeyW
CreatePopupMenu
ActivateKeyboardLayout
InSendMessageEx
SendMessageW
IsWindow
GetDialogBaseUnits
IsRectEmpty
GetUserObjectInformationW
ScrollWindowEx
LoadStringW
GetDoubleClickTime

version

VerQueryValueW

ole32

OleIsRunning

msvcrt

memcpy

gdi32

GetROP2
PatBlt
RectVisible
SetRectRgn
ExtTextOutA
GetTextCharsetInfo
SetWindowExtEx
CreateBrushIndirect
BitBlt
SelectPalette
CreateDCW
GetDeviceCaps
GetTextExtentPoint32W
CreateEllipticRgnIndirect
EnumFontFamiliesExW
TranslateCharsetInfo
EnumFontFamiliesW

kernel32

FindFirstChangeNotificationW
GlobalSize
GetVersionExW
MulDiv
CopyFileW
SetLastError
ConvertDefaultLocale
GetFullPathNameA
IsDBCSLeadByteEx
GetVersionExA
RemoveDirectoryW
SetThreadAffinityMask
GetNumberFormatA
VirtualFree
ExitThread
FindResourceExW
FoldStringW
TlsGetValue

Exports

Exports

?SDOisioKJS@@YGKEPA_WG@Z

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dat_0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat_1
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dat_2
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat_3
Size: 512B - Virtual size: 508B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dat_4
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.debug
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a2a7381ea3de10f5e6a86992c914c20

Headers

File Characteristics

Imports

comdlg32

user32

version

ole32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 56KB

.dat_0 Size: 2KB - Virtual size: 1KB

.dat_1 Size: 512B - Virtual size: 192B

.dat_2 Size: 512B - Virtual size: 192B

.dat_3 Size: 512B - Virtual size: 508B

.dat_4 Size: 13KB - Virtual size: 12KB

.rdata Size: 512B - Virtual size: 348B

.data Size: 2KB - Virtual size: 2KB

.debug Size: 512B - Virtual size: 89B

.rsrc Size: 140KB - Virtual size: 140KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 56KB

.dat_0
Size: 2KB - Virtual size: 1KB

.dat_1
Size: 512B - Virtual size: 192B

.dat_2
Size: 512B - Virtual size: 192B

.dat_3
Size: 512B - Virtual size: 508B

.dat_4
Size: 13KB - Virtual size: 12KB

.rdata
Size: 512B - Virtual size: 348B

.data
Size: 2KB - Virtual size: 2KB

.debug
Size: 512B - Virtual size: 89B

.rsrc
Size: 140KB - Virtual size: 140KB

.reloc
Size: 2KB - Virtual size: 1KB