317c302ea877656be44bed621c14a7397aac2f4ad79aba6768a3605393cf78a0

Sharing

Copy URL Twitter E-mail

General

Target

317c302ea877656be44bed621c14a7397aac2f4ad79aba6768a3605393cf78a0
Size

413KB
MD5

da87718cd8b695ce272df1499f71c46f
SHA1

3f443fb378f2e3f40b41a7b22512589cf4bc091e
SHA256

317c302ea877656be44bed621c14a7397aac2f4ad79aba6768a3605393cf78a0
SHA512

5cf1bdaef17c7d2048f8bd7167692f5e8f8596a164c15b751f28cb6eeb43d71f99408a43ddf355df81a65ff5916805790546c21b933c3894b499808ca5cb90d4
SSDEEP

6144:6s6maJCkBIm6MW4X5TwXG2Gsr6gm73TXclTmnsrx8Vc7Mf+y1L8yN4nzB2xIR77H:k/MkIm6MZX5T4GsejYGV86My2zBF77O

Score

N/A

Malware Config

Signatures

Files

317c302ea877656be44bed621c14a7397aac2f4ad79aba6768a3605393cf78a0
.exe windows x86

395a70ed945578c8159fa823e26aad75

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFileEx
CloseHandle
CreateFileA
GetThreadPriority
DeleteFileA
OpenThread
SetThreadPriority
GetCurrentThreadId
LocalFileTimeToFileTime
GlobalAlloc
ExitThread
GlobalFree
GlobalReAlloc
GetFullPathNameA
ResetEvent
GetCurrentThreadId
GetCommandLineW
CreateEventA

msidvm60

Resume
Udt
PutMemEvent
Div
AppActivate
RecDestructAnsi
PrintObj
ForInit
PutOwner3
TstGe
LoadRunTime
ObjSetAddref
GetMemNewObj
gUnkAddref
GosubFree
CurrentDirBstr
Left
StrComp
ObjIs
CySgn
ForEachCollAd
StrDate
SaveSetting
CreateIExprSrvObj
MsgBox
CyForInit
RightTrim
gParmRef
CmpLe
FpUI1
OnGoCheck
TstLe
FileReset
FileCloseAll
Error
CyStr
LateIdSt
RemoveDir
GetDateValue
WeekdayName
StrR4
ResetProjectNormal
Xor
Exp
UI1Cy
VerifyObj
IsEmpty
Get3
GetDateBstr
R4Err
CmpGe
TextCmpGt
FpR8
RsetFixstrFree
Redim2
NextEachCollAd
Sqr
TypeName
Add
SetTimeBstr
FpI2
New
Str2Vec
RandomNext
TextTstLt
InputFile
CmpGt
MakeDir

ntdll

NtMapViewOfSection
ZwQueryObject
ZwQuerySystemInformation
RtlGetLastWin32Error
NtCreateSection
ZwQueryInformationProcess

gdi32

CreateDCA
EndDoc
SaveDC
GetTextMetricsA
CreateDIBSection
GetStockObject
SetPixel
DeleteDC
StartDocA
DeleteObject

user32

BringWindowToTop
GetCursorPos
EnableMenuItem
MapWindowPoints
SetForegroundWindow
CharNextA
RegisterClipboardFormatA
PostQuitMessage
IsDlgButtonChecked
LoadCursorA
TranslateMDISysAccel
CreateMenu
GetWindowTextW
ExitWindowsEx
FillRect
IsWindowVisible
DefWindowProcW
GetClassNameA
DrawFocusRect
CountClipboardFormats
CallNextHookEx
CharLowerW
GetSystemMenu
CharLowerBuffW
SetWindowLongW
SetWindowsHookExA
CharToOemA
SetCaretPos
GetKeyboardType
GetMessageA
GetClassNameW

Sections

.text
Size: 374KB - Virtual size: 374KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

395a70ed945578c8159fa823e26aad75

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msidvm60

ntdll

gdi32

user32

Sections

.text Size: 374KB - Virtual size: 374KB

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 374KB - Virtual size: 374KB

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 2KB - Virtual size: 4KB