294eb2445eef1f3ba831a9bf2d951ccd5024d1d5db6a5bf72854792ae52c5908

Sharing

Copy URL Twitter E-mail

General

Target

294eb2445eef1f3ba831a9bf2d951ccd5024d1d5db6a5bf72854792ae52c5908
Size

153KB
MD5

132ea5bf7567158bc006c6b171497414
SHA1

5db4358b34184995697bb727e50a7134bd5774e6
SHA256

294eb2445eef1f3ba831a9bf2d951ccd5024d1d5db6a5bf72854792ae52c5908
SHA512

b4f86c0e02f4b0e9bebcdc46f32cba698835d9dafbf85eae2efff94bdc870e9c6c55e2ccc2a29bf58fa8b7a245bb5883d4ecfd8dc36ae0b9c8c36cd821a9d8ff
SSDEEP

3072:EcXCC4IWpsPrLmBYhqpMWb7Ur3l63SG2SLgcisKKlmGvhgfvSVTmwdE:ETCmsPraJboJ6GHVsddKmR

Score

N/A

Malware Config

Signatures

Files

294eb2445eef1f3ba831a9bf2d951ccd5024d1d5db6a5bf72854792ae52c5908
.exe windows x86

7124cf37623bb4ace79a5ba50354f2a8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceInterfaceDetailA

kernel32

lstrlenA
lstrcpyA
CreateDirectoryA
VirtualProtect
VirtualFree
VirtualAlloc
SetCurrentDirectoryA
LocalFree
LoadLibraryA
GetVersionExA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
GetFileAttributesA
GetCurrentProcess
GetCurrentDirectoryA
FreeLibrary
FindFirstFileA
FindClose
ExitProcess

user32

ShowCursor
SetTimer
SetThreadDesktop
SetKeyboardState
GetWindowPlacement
GetCursorInfo
GetClipboardSequenceNumber
GetAsyncKeyState
EnumThreadWindows
EndPaint
DdeSetUserHandle
ChildWindowFromPointEx
CallNextHookEx
BeginPaint
GetIconInfo

gdi32

SetStretchBltMode
PlayEnhMetaFile
DeleteObject
GetObjectA
GetFontLanguageInfo
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
CreateDIBitmap
StretchBlt
GetBitmapBits
DeleteDC

advapi32

RegOpenKeyExA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
LsaQuerySecret
RegQueryValueExA

ole32

StgCreateDocfileOnILockBytes

shell32

SHCreateDirectoryExW

Exports

Exports

GetTableInfo
HrCopyStreamCB
HrFillRasCombo
HrIsStreamUnicode
OpenTable
PixelMap
ReplaceCharsW

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7124cf37623bb4ace79a5ba50354f2a8

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

user32

gdi32

advapi32

ole32

shell32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 81KB - Virtual size: 80KB

.data Size: 17KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 81KB - Virtual size: 80KB

.data
Size: 17KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 1KB