96fe61fefb2c6872c98670913f4cf82a163dccb40f1b5e2fa2e14c5737eb7910

Sharing

Copy URL Twitter E-mail

General

Target

96fe61fefb2c6872c98670913f4cf82a163dccb40f1b5e2fa2e14c5737eb7910
Size

134KB
MD5

837dfce0669e606d644919b2a8772e1e
SHA1

a1c2d55d4dcd925f1402f6e295718a5b406021ec
SHA256

96fe61fefb2c6872c98670913f4cf82a163dccb40f1b5e2fa2e14c5737eb7910
SHA512

a9b74420511a0ddec9fa004e20b2bb78df3e06997bb6917d9ba5ad3c6e13a90702390e138408e1a1b24d853ef4fc66fdb5dba90d4a5764f7c34739c78b658e05
SSDEEP

3072:r21OkmBtvc+8vd7PTgVQwATuyGa0cyPXRvLQ:r20kStvc+47PQguyGLciXRvE

Score

N/A

Malware Config

Signatures

Files

96fe61fefb2c6872c98670913f4cf82a163dccb40f1b5e2fa2e14c5737eb7910
.exe windows x86

e321c14f50aa8d4fb837fb47cd0a2a90

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontsW
GetTextFaceW
GetSystemPaletteEntries
EndDoc
CreateDCW
TextOutA
GetTextCharacterExtra
CreateCompatibleDC

kernel32

FoldStringW
DisconnectNamedPipe
CreateWaitableTimerA
OpenFileMappingW
LocalFree
FindClose
GetTempFileNameW
GetCurrentDirectoryA
SleepEx
OutputDebugStringA
GlobalLock
GlobalGetAtomNameA
lstrcmpiA

advapi32

GetUserNameW

comdlg32

GetOpenFileNameW
PrintDlgExW

msvcrt

ctime
strtoul
vswprintf
sscanf
isprint
_vsnprintf

user32

ActivateKeyboardLayout
DeleteMenu
GetWindow
SetCaretPos
GetWindowDC
ShowScrollBar
IsZoomed
GetAsyncKeyState
GetDC
TranslateMessage
CreateDialogParamA
mouse_event
SetCursor
PtInRect
EqualRect

shlwapi

StrDupW
PathGetArgsW
StrToIntExW

Exports

Exports

_SpunaaHp_xhUmaaecx_rrj@8
_RqtkWCKq_jrcnbA@16
_OiqiSznm_tlugicms_f@16
_McvcecPX_crutuhe@12
_JygkFdfF_hsptmrrH_xneW@12
?_CombineRgn@@YGKKK@Z
_LlnzzoIl_VqoBzwrl@8
_Qyuxurja_dSyknrfim_If@12

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.IM_Mem
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Mem_0
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Mem_1
Size: 6KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.EX_Mem
Size: 1024B - Virtual size: 831B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e321c14f50aa8d4fb837fb47cd0a2a90

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

comdlg32

msvcrt

user32

shlwapi

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.data Size: 3KB - Virtual size: 3KB

.IM_Mem Size: 2KB - Virtual size: 2KB

.Mem_0 Size: 85KB - Virtual size: 85KB

.Mem_1 Size: 6KB - Virtual size: 214KB

.EX_Mem Size: 1024B - Virtual size: 831B

.rsrc Size: 13KB - Virtual size: 12KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 17KB

.data
Size: 3KB - Virtual size: 3KB

.IM_Mem
Size: 2KB - Virtual size: 2KB

.Mem_0
Size: 85KB - Virtual size: 85KB

.Mem_1
Size: 6KB - Virtual size: 214KB

.EX_Mem
Size: 1024B - Virtual size: 831B

.rsrc
Size: 13KB - Virtual size: 12KB

.reloc
Size: 4KB - Virtual size: 4KB