b56909fa165ba4777df9f576945d024aece6518b1653eec6a2066ef93f7f638e

Sharing

Copy URL Twitter E-mail

General

Target

b56909fa165ba4777df9f576945d024aece6518b1653eec6a2066ef93f7f638e
Size

181KB
MD5

a4630ef652c107d816a9cf663c58cda8
SHA1

0c0947ed7a62f6796d8d31b8ec92de7d882db2ac
SHA256

b56909fa165ba4777df9f576945d024aece6518b1653eec6a2066ef93f7f638e
SHA512

5cb7539eb4c2d458d20701ea56fc69f782652e83e0c6651d0c7aadeb349b2c2ac5bc0c12d73bc0a500307f7187918f0d4b747df94b8d34968d8809d19a916cb4
SSDEEP

3072:kRKs2ecHO46tyQ6wJqRkxbUgqBBRKLDv4gRYp0wvvcM:IL2ecHO4mJJFxbU3BRo04Yp0wHL

Score

N/A

Malware Config

Signatures

Files

b56909fa165ba4777df9f576945d024aece6518b1653eec6a2066ef93f7f638e
.exe windows x86

1391c02353691c2dca65d4ce3081105a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpNIW

kernel32

lstrcmpW
EscapeCommFunction
EnumResourceTypesA
PulseEvent
OpenFileMappingW
CreateMutexA
lstrlenW
EnumResourceLanguagesA
SetPriorityClass
HeapFree
MoveFileExW
GetThreadContext
GetUserDefaultUILanguage
GlobalAddAtomA

gdi32

RoundRect
SetROP2
EnumFontFamiliesExW
GetNearestPaletteIndex
StartPage
SetStretchBltMode
SetRectRgn
GetTextCharsetInfo

comctl32

CreatePropertySheetPageW
CreatePropertySheetPageA

user32

SetProcessDefaultLayout
RemovePropW
GetScrollRange
SetTimer
SetRect
DragObject
DestroyAcceleratorTable
SetCursorPos
SetWindowTextA
GetWindowTextA
ShowCursor
GetProcessDefaultLayout
IsCharAlphaNumericA

Exports

Exports

?kqceRqEfjgeBstaw@@YGIK@Z
?ohmgLFqPoDzhurluhqe@@YGXJH@Z
?QwERUmkbghWmQpxqhP@@YGX_N@Z
?imhnNsIq@@YGIJ@Z

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 200B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.temp
Size: 141KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1391c02353691c2dca65d4ce3081105a

Headers

File Characteristics

Imports

shlwapi

kernel32

gdi32

comctl32

user32

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.idata Size: 1KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 200B

.temp Size: 141KB - Virtual size: 141KB

.data Size: 7KB - Virtual size: 91KB

.crt Size: 2KB - Virtual size: 1KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 16KB - Virtual size: 15KB

.idata
Size: 1KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 200B

.temp
Size: 141KB - Virtual size: 141KB

.data
Size: 7KB - Virtual size: 91KB

.crt
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 3KB - Virtual size: 2KB