9a5fc8f2a935a4091acb84b372c767c9b9b9fd839ea4d8fb2373e62e1786325f

Sharing

Copy URL Twitter E-mail

General

Target

9a5fc8f2a935a4091acb84b372c767c9b9b9fd839ea4d8fb2373e62e1786325f
Size

91KB
MD5

7f750084a11b8f4e118f8240823a1afd
SHA1

2988bc28d5b46149b8e99895dc39695bd457d95f
SHA256

9a5fc8f2a935a4091acb84b372c767c9b9b9fd839ea4d8fb2373e62e1786325f
SHA512

ef9e3a609cb10a09679fe110345f8f74b55685d1ded2536c946ac48e84c507c1c9b4d92e3ecb0046e2173e90cb73d0fa144ff3e832e070146943e7608114bebe
SSDEEP

1536:lQF8aeFxGVDghxX+Evu06+qJfODFkvkBUhkhUOHcg2JT4Dgc0/ndUoP38fVQyGQn:SF8aeFxGShxX+E27sFkUUhkdHcg21wge

Score

N/A

Malware Config

Signatures

Files

9a5fc8f2a935a4091acb84b372c767c9b9b9fd839ea4d8fb2373e62e1786325f
.exe windows x86

2a00f5df7fa943940ad82142cb24a62a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
memset

ole32

CoGetClassObject
CoTaskMemFree
CoGetMalloc
CoTaskMemAlloc

kernel32

CreateNamedPipeA
HeapAlloc
GetProcessHeap
ExitProcess
HeapFree
WriteFile
OpenProcess
CompareStringW
LoadLibraryA
MoveFileA
GetCurrentProcessId
WriteProcessMemory
CloseHandle

user32

DrawEdge
CreateMenu
LoadBitmapA
ShowCursor
SetCursor
MoveWindow
GetForegroundWindow
SetWindowLongA
GetWindow
ShowWindow
PostMessageA
GetCursor
SetWindowTextW
ModifyMenuA
DrawTextA
GetDC
ReleaseDC
GetActiveWindow
GetWindowRect
CreateWindowExA
SetWindowTextA
GetWindowLongA

gdi32

GetPath
CreateDIBPatternBrush
BeginPath
GetBitmapBits
ExtCreatePen
SetBitmapBits
InvertRgn
CreateFontIndirectA
CreateDCA
DeleteObject
SelectObject
PolyDraw
CreateCompatibleDC
CreateCompatibleBitmap
EndPath
PathToRegion
ExtTextOutA
MaskBlt
CreateFontIndirectW
CreateBitmap
SetMapMode
DrawEscape
DeleteDC

Exports

Exports

?EnableTouchPad@@YGPAXKKK@Z
?GoToTheHell@@YGPAXKKK@Z

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_winoc
Size: 512B - Virtual size: 344B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a00f5df7fa943940ad82142cb24a62a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

ole32

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 40B

DATA Size: 512B - Virtual size: 256B

.rsrc Size: 81KB - Virtual size: 80KB

_winoc Size: 512B - Virtual size: 344B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 40B

DATA
Size: 512B - Virtual size: 256B

.rsrc
Size: 81KB - Virtual size: 80KB

_winoc
Size: 512B - Virtual size: 344B