746dc210d655b385b98dc55051357ae4134b0c42ec3b0004798d5f760490d330

Sharing

Copy URL Twitter E-mail

General

Target

746dc210d655b385b98dc55051357ae4134b0c42ec3b0004798d5f760490d330
Size

269KB
MD5

4baab13909a828c2ca5584209d6fbde2
SHA1

26ba95dbf8963c796a12c14c62c00fa800a76b7f
SHA256

746dc210d655b385b98dc55051357ae4134b0c42ec3b0004798d5f760490d330
SHA512

9b9adc43878baac1cec7b264c949c43243c1bc634ff0e13d870d2750cb75e24c8891769f0c037a6c71febb332e733a504ad72b57d31ea163a57f3d0fdf898916
SSDEEP

6144:/RWVWxMB5HdId/ZeccJXqY2/aXB9p/Dh3rlH8EIJb:/Y5HdIdQlRaCXB9p7brIJ

Score

N/A

Malware Config

Signatures

Files

746dc210d655b385b98dc55051357ae4134b0c42ec3b0004798d5f760490d330
.exe windows x86

a4076ee7653a718d32cb0143d3fb3912

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

usp10

ScriptApplyLogicalWidth
ScriptCPtoX
ScriptCacheGetHeight
ScriptFreeCache
ScriptGetCMap
ScriptGetFontProperties
ScriptGetGlyphABCWidth
ScriptGetLogicalWidths
ScriptGetProperties
ScriptIsComplex
ScriptLayout
ScriptPlace
ScriptRecordDigitSubstitution
ScriptShape
ScriptStringAnalyse
ScriptStringCPtoX
ScriptStringValidate
ScriptStringXtoCP
ScriptString_pLogAttr

kernel32

TlsGetValue
HeapReAlloc
HeapAlloc
HeapSize
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetStringTypeW
MultiByteToWideChar
LCMapStringW
RtlUnwind
Sleep
HeapFree
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
EnterCriticalSection
IsProcessorFeaturePresent
VirtualProtect
ExpandEnvironmentStringsA
GetCommandLineA
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
EncodePointer
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
GetCurrentThread
HeapCreate
HeapDestroy
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
UnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
FatalAppExitA

Sections

.text
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4076ee7653a718d32cb0143d3fb3912

Headers

DLL Characteristics

File Characteristics

Imports

usp10

kernel32

Sections

.text Size: 89KB - Virtual size: 88KB

.rdata Size: 110KB - Virtual size: 110KB

.data Size: 65KB - Virtual size: 118KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 89KB - Virtual size: 88KB

.rdata
Size: 110KB - Virtual size: 110KB

.data
Size: 65KB - Virtual size: 118KB

.reloc
Size: 3KB - Virtual size: 3KB