9d6aea20a5c96ce86a5d3c50bedcfed3f5b692d91665e36295d765eceb3069d7

Sharing

Copy URL Twitter E-mail

General

Target

9d6aea20a5c96ce86a5d3c50bedcfed3f5b692d91665e36295d765eceb3069d7
Size

215KB
MD5

39c41e76d98e25c0fc9f774e3025dcf0
SHA1

13532362ab9caa2c92505d3ac4229def1affa049
SHA256

9d6aea20a5c96ce86a5d3c50bedcfed3f5b692d91665e36295d765eceb3069d7
SHA512

f4eb4e2d63502d264d658845203f9d65d6d83d2a048c70260262319b625b3aff8a5949f07c1c0469a7a253a5c933c0f4ea09daeb649f911b2c4429cc81ef7203
SSDEEP

3072:KUGSLUgu5lqCu8sIkd1GPq4YnBdkbJOQybWmdikSkqNk9Ou4Pk72xGrGhhwt7T:3LLGlS8sI8Bv2nmd/Skqu9uPk6fst

Score

N/A

Malware Config

Signatures

Files

9d6aea20a5c96ce86a5d3c50bedcfed3f5b692d91665e36295d765eceb3069d7
.exe windows x86

a4b36b5909df256ac924c0e62e6ea1c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ResizePalette
GetStockObject
RestoreDC
ExcludeClipRect
SetLayout
GetTextFaceW
CreateHatchBrush
SetBkMode
SetDIBColorTable
GetMapMode
GetTextColor
ExtTextOutA
BitBlt
CreateBitmapIndirect
CreateFontA

user32

GetClassLongW
RegisterClassA
RegisterClassExA
WindowFromPoint
SendNotifyMessageW
HiliteMenuItem
ExitWindowsEx
AppendMenuA
AllowSetForegroundWindow
CreateDialogParamW
DialogBoxParamW
WaitForInputIdle
SetSysColors
IsChild
PostMessageW
IsDialogMessageW
ValidateRect
KillTimer
GetWindowLongA
SystemParametersInfoA
CreateWindowExW
MessageBoxA
SetMenuItemBitmaps
SendDlgItemMessageW
GetClassNameW
GetClipCursor
LoadImageA
ShowWindow
wvsprintfW
ShowScrollBar
EnumChildWindows
SystemParametersInfoW
MapVirtualKeyW
DestroyCursor
TileWindows

comdlg32

PageSetupDlgW
ChooseColorW
PrintDlgExW
GetOpenFileNameA

kernel32

SetErrorMode
GetTimeFormatA
AddAtomA
GetFileInformationByHandle
MoveFileA
RaiseException
GetStartupInfoA
LockFile
GetSystemDefaultLangID
WaitForSingleObjectEx
DeleteFileW
SetThreadContext
GetCommProperties
FlushFileBuffers
LoadLibraryW
lstrcpyW

msvcrt

_controlfp
strtol
__set_app_type
__p__fmode
__p__commode
calloc
_amsg_exit
_initterm
wcstok
_acmdln
towlower
exit
_ismbblead
rand
gets
_XcptFilter
floor
strncpy
_exit
clearerr
_cexit
__setusermatherr
__getmainargs
wcstoul

Exports

Exports

?CreateEventJUDhfjkldf@@YGKEPA_WG@Z

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 396B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imul
Size: 512B - Virtual size: 262B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 1024B - Virtual size: 889B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4b36b5909df256ac924c0e62e6ea1c7

Headers

File Characteristics

Imports

gdi32

user32

comdlg32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 175KB - Virtual size: 175KB

.idat Size: 512B - Virtual size: 396B

.diag_x Size: 512B - Virtual size: 28B

.data Size: 2KB - Virtual size: 2KB

.div Size: 2KB - Virtual size: 2KB

.diag_y Size: 512B - Virtual size: 62B

.imul Size: 512B - Virtual size: 262B

.plus Size: 1024B - Virtual size: 889B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 28KB - Virtual size: 28KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 175KB - Virtual size: 175KB

.idat
Size: 512B - Virtual size: 396B

.diag_x
Size: 512B - Virtual size: 28B

.data
Size: 2KB - Virtual size: 2KB

.div
Size: 2KB - Virtual size: 2KB

.diag_y
Size: 512B - Virtual size: 62B

.imul
Size: 512B - Virtual size: 262B

.plus
Size: 1024B - Virtual size: 889B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 1KB - Virtual size: 1KB