ea4aa95d6e35bded8a4ddea9a654f9b69ba84b9b45d9261be1efa13a4b533eda

Sharing

Copy URL Twitter E-mail

General

Target

ea4aa95d6e35bded8a4ddea9a654f9b69ba84b9b45d9261be1efa13a4b533eda
Size

369KB
MD5

c257808ee36f7af36015bd69f9e2c660
SHA1

149e757158baf8b7535b84603cefe24447d009a5
SHA256

ea4aa95d6e35bded8a4ddea9a654f9b69ba84b9b45d9261be1efa13a4b533eda
SHA512

eb58af5877ad180165187b315779b1beecb097a03c34e4e6acba1957dcb10f424b0fd81de12687e8d7da831417cf8b30311e4cf9ed1d0eb4f10716dcaf0daade
SSDEEP

6144:nUO7h6e4ZDdk/rTY9yWVIF8TpVZBOJOv0I:nUO74e+k/rxW68p4C0

Score

N/A

Malware Config

Signatures

Files

ea4aa95d6e35bded8a4ddea9a654f9b69ba84b9b45d9261be1efa13a4b533eda
.exe windows x86

06f9a3b646c6beee9d40fbb45123add3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetBoundsRect
DeleteDC
SaveDC
GetWorldTransform
GetICMProfileW
GetObjectA
GetNearestColor
SetEnhMetaFileBits
GetPolyFillMode
CreateFontW
DeleteObject
StartDocA
GetDeviceCaps
GetRgnBox
DescribePixelFormat
LPtoDP
GetColorAdjustment
CreateColorSpaceA
EnumEnhMetaFile
CreateDCW

comdlg32

PageSetupDlgW

kernel32

SetFilePointer
EnumResourceLanguagesW
InitializeCriticalSection
InterlockedDecrement
IsValidLocale
IsValidCodePage
GetFileAttributesW
GetCurrentProcess
FlushFileBuffers
GetStartupInfoA
GetFileType
GetModuleHandleA
EnumSystemLocalesA
GetCurrentThread
HeapCreate
InterlockedIncrement
HeapReAlloc
ContinueDebugEvent
DeleteCriticalSection
GetCurrentProcessId
ReadFile
GetTickCount
EnterCriticalSection
HeapFree
IsDebuggerPresent
SetEnvironmentVariableA
RtlFillMemory
GetStdHandle
UnhandledExceptionFilter
GetConsoleOutputCP
GetEnvironmentStrings
GetProcessHeap
LoadLibraryA
HeapSize
InterlockedExchange
GetCurrentThreadId
GetProfileSectionW
FreeLibrary
MultiByteToWideChar
CreateMutexA
QueryPerformanceCounter
GetConsoleCP
CloseHandle
LCMapStringW
TerminateProcess
WriteConsoleA
FreeEnvironmentStringsA
WriteFile
GetLocaleInfoA
GetOEMCP
GlobalDeleteAtom
GetCPInfo
GetSystemTimeAsFileTime
VirtualFree
SetLastError
GetStringTypeW
GetDriveTypeA
VirtualAlloc
GetVersionExA
OpenMutexA
ExitProcess
HeapDestroy
WriteConsoleW
Sleep
TlsGetValue
HeapAlloc
GetTimeZoneInformation
SetHandleCount
TlsFree
WideCharToMultiByte
GetConsoleMode
VirtualQuery
GetModuleFileNameA
RtlUnwind
SetConsoleCtrlHandler
GetStringTypeA
CompareStringA
CreateFileA
GetUserDefaultLCID
GetCommandLineA
GetProcAddress
CompareStringW
GetDateFormatA
TlsSetValue
WaitForSingleObjectEx
GetACP
LCMapStringA
GetEnvironmentStringsW
LeaveCriticalSection
CreateDirectoryA
GetTimeFormatA
GetLocaleInfoW
GetLastError
SetUnhandledExceptionFilter
OpenProcess
LocalReAlloc
SetStdHandle
FreeEnvironmentStringsW
TlsAlloc

user32

RegisterClassExA
RegisterClassA
GetDlgItemTextW
SendIMEMessageExA
SetRectEmpty
SetClipboardData
MenuItemFromPoint

comctl32

CreateMappedBitmap
ImageList_DragLeave
InitCommonControlsEx

Sections

.text
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06f9a3b646c6beee9d40fbb45123add3

Headers

File Characteristics

Imports

gdi32

comdlg32

kernel32

user32

comctl32

Sections

.text Size: 207KB - Virtual size: 207KB

.rdata Size: 20KB - Virtual size: 40KB

.data Size: 89KB - Virtual size: 89KB

.rsrc Size: 51KB - Virtual size: 50KB

.text
Size: 207KB - Virtual size: 207KB

.rdata
Size: 20KB - Virtual size: 40KB

.data
Size: 89KB - Virtual size: 89KB

.rsrc
Size: 51KB - Virtual size: 50KB