978b7db684ec86175dfc5afba2193a2fd97ad73513d7c4da67ca7c793845c993

Sharing

Copy URL Twitter E-mail

General

Target

978b7db684ec86175dfc5afba2193a2fd97ad73513d7c4da67ca7c793845c993
Size

186KB
MD5

14372744a1acb25419dc1c45a62ff81f
SHA1

1202a244712a0b6a04942c5b716047a0218cf3c9
SHA256

978b7db684ec86175dfc5afba2193a2fd97ad73513d7c4da67ca7c793845c993
SHA512

396343139177fa8ee6404cbedb6b4e29a90a7f10ff0ed8ab7b23d047e5ef54be9dfbace20a240d89435e766d544fd67f779f421d9b3c30a5512401a9a60f341b
SSDEEP

3072:hS7opF8R7LM4ifXs0E/0Y6kXVjx3EB0A39f8569kYL5HVV23Hk:hj/8R2/DE/rFjNPk9Q69xLR23E

Score

N/A

Malware Config

Signatures

Files

978b7db684ec86175dfc5afba2193a2fd97ad73513d7c4da67ca7c793845c993
.exe windows x86

5c2c974fa2d8e1052d36eaf9d11c08b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreatePropertySheetPageA
ImageList_Read
ImageList_Draw
ImageList_GetIconSize

kernel32

lstrlenW
ExitProcess
GlobalFree
SetThreadExecutionState
EscapeCommFunction
FindCloseChangeNotification
SystemTimeToFileTime

user32

IsWindowEnabled
SendDlgItemMessageA
RegisterClassExA
LoadStringA
PostQuitMessage
wsprintfA
GetDlgItemInt
CharPrevA
TabbedTextOutW
GetShellWindow
DefFrameProcA
LookupIconIdFromDirectory
PostMessageW

shlwapi

StrRStrIW

gdi32

GetCharWidth32W
GetTextAlign
SetMapMode
CreateDiscardableBitmap
PatBlt

comdlg32

GetFileTitleW
CommDlgExtendedError
ChooseFontW

msvcrt

exit

Exports

Exports

?USIUDVEHX_A_AA_BRQWICx@@YGXEN@Z
?_sqea_uak_bs_@@YGPADH@Z
?BKX_TAhofzhA__@@YG_NIK@Z
?ZUva_ezh_nh@@YGKFJ@Z
?_YTh_bLHE_O_EO_so@@YGEPAKG@Z
?get_BSCNTdkyyhk@@YGPAJMPAE@Z
?F___LD_z@@YGJJJ@Z

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dbg
Size: 2KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qdata
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c2c974fa2d8e1052d36eaf9d11c08b9

Headers

File Characteristics

Imports

comctl32

kernel32

user32

shlwapi

gdi32

comdlg32

msvcrt

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 12KB - Virtual size: 12KB

.dbg Size: 2KB - Virtual size: 161KB

.qdata Size: 113KB - Virtual size: 112KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 12KB - Virtual size: 12KB

.dbg
Size: 2KB - Virtual size: 161KB

.qdata
Size: 113KB - Virtual size: 112KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 1KB - Virtual size: 1KB