c2109dcf815db4214cfb200670e0e125dddd8a8f2ea5c47814bfa2dcfe5dc522

Sharing

Copy URL

Twitter E-mail

General

Target

c2109dcf815db4214cfb200670e0e125dddd8a8f2ea5c47814bfa2dcfe5dc522
Size

55KB
MD5

a1e8823b124cd371f2ac6a472ddfcf33
SHA1

70eb29002ce5ffa91f747b6a8ca4da09cbc3244c
SHA256

c2109dcf815db4214cfb200670e0e125dddd8a8f2ea5c47814bfa2dcfe5dc522
SHA512

d3609d3b5b24b387354645f02f4042832a74e41fc5d2d32d926f42c989e37ab98670f3b40d5f2d26ee1a2c24dccbb561b8981aac05927801a8c0b2b477c3f157
SSDEEP

768:x7JXnFw+1IMwT+HUBf4X96jYTA8gT8RvmGkLz0IQ8Cj/Y0AM9sDcb8miaZLAWHaw:3Wse+HUpQTA8gIszn0AkacQeLA4au

Score

N/A

Malware Config

Signatures

Files

c2109dcf815db4214cfb200670e0e125dddd8a8f2ea5c47814bfa2dcfe5dc522
.exe windows x86

e99d3ee78fe0951a35e39b7e6b4b5c0f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

RtlUnwind

gdiplus

GdipGetImageEncodersSize
GdipGetImageEncoders
GdiplusStartup
GdipDrawImageRectRectI
GdipDisposeImage
GdipCreateFromHDC
GdipSaveImageToStream
GdipDeleteGraphics
GdiplusShutdown
GdipLoadImageFromStream
GdipCreateBitmapFromHBITMAP

kernel32

FindNextFileW
GlobalFree
GetModuleHandleW
GetProcAddress
FindClose
CloseHandle
GetFullPathNameW
SearchPathW
CompareStringW
GetCurrentThreadId
GetFileSize
SetFilePointer
WriteFile
FileTimeToSystemTime
ReadFile
CreateFileW
FlushFileBuffers
GetFileTime
FileTimeToLocalFileTime
WideCharToMultiByte
MultiByteToWideChar
SetLastError
FindFirstFileW
MulDiv
GlobalAddAtomW
GetLastError
IsBadWritePtr
FormatMessageW
GlobalDeleteAtom
ExitProcess
GetTimeFormatW
GetDateFormatW
GlobalAlloc
HeapFree
DebugBreak
HeapAlloc
InterlockedExchange
VirtualQuery

user32

WindowFromPoint
TrackMouseEvent
DrawTextA
SetCapture
GetWindowLongW
MessageBeep
GetKeyState
GetMonitorInfoW
MessageBoxW
UnhookWindowsHookEx
SetWindowsHookExW
CallNextHookEx
MonitorFromPoint
CallWindowProcW
GetPropW
SetPropW
RemovePropW
LoadIconW
ReleaseCapture
GetDlgCtrlID
wsprintfW
DestroyWindow
ScreenToClient
GetWindowRect
PostMessageW
DrawTextW
DialogBoxIndirectParamW
GetParent
wsprintfA
GetClientRect
SetFocus
PtInRect
DrawFocusRect
InvalidateRect
GetWindowTextW
ReleaseDC
GetDlgItem
SetWindowLongW
EndDialog
RedrawWindow
GetSysColor
SetWindowPos
GetCursorPos
ShowWindow
CreateWindowExW
SetClassLongW
GetActiveWindow
IsWindowVisible
SetWindowTextA
SendMessageW
EnableWindow
SetWindowTextW
GetDC

gdi32

CreateCompatibleDC
DeleteObject
DeleteDC
BitBlt
CreatePen
GetObjectW
SetBkMode
CreateFontIndirectW
CreateCompatibleBitmap
MoveToEx
SetDCPenColor
ExtTextOutW
GetTextMetricsW
LineTo
SetTextColor
SetBkColor
SelectObject
GetStockObject

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

shell32

DragQueryFileW

ole32

ReleaseStgMedium
OleUninitialize
OleInitialize
RevokeDragDrop
CreateStreamOnHGlobal
RegisterDragDrop

Sections

.data
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e99d3ee78fe0951a35e39b7e6b4b5c0f

Headers

File Characteristics

Imports

ntdll

gdiplus

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.data Size: 52KB - Virtual size: 51KB

.rsrc Size: 2KB - Virtual size: 1KB

.data
Size: 52KB - Virtual size: 51KB

.rsrc
Size: 2KB - Virtual size: 1KB