e7536ecd8bae29d94030417974886a2e25c2d1a25c73b144ca70c67b54780792

General

Target

e7536ecd8bae29d94030417974886a2e25c2d1a25c73b144ca70c67b54780792
Size

179KB
MD5

d7e6d6fd346de361840b6c91d0c85f68
SHA1

c2e6b55b7249ff6384a7da6095af9c740b3c0186
SHA256

e7536ecd8bae29d94030417974886a2e25c2d1a25c73b144ca70c67b54780792
SHA512

628e3750b75b58b52b358e8d62b7dc41fbd7af6728544c7c7eab2d78624b74130877fcb9b761eaec466484cda30d6d80f8258b62a3996bba2b96db266268b411
SSDEEP

3072:z8S8S1p7Pl/46oB6h8754DLf2ZHPMGiy6SI/k3x8gmwApnFA:z8uPl/v+7k0RiyZI/OrmDpn6

Score

N/A

Malware Config

Signatures

Files

e7536ecd8bae29d94030417974886a2e25c2d1a25c73b144ca70c67b54780792
.exe windows x86

1752a67c7a2980a7623e3f26a8d069a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CheckColorsInGamut
BitBlt
AddFontResourceExA
CloseMetaFile
AddFontResourceA
CreateColorSpaceW

kernel32

SetConsoleCP
GetCommandLineA
GetSystemWindowsDirectoryA
GetThreadTimes
SetCommTimeouts
GetSystemTimeAsFileTime
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
WideCharToMultiByte
GetTimeZoneInformation
GetProcAddress
GetModuleHandleW
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
HeapCreate
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
Sleep
HeapFree
GetCPInfo
IsProcessorFeaturePresent
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
RtlUnwind
HeapAlloc
HeapReAlloc
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapSize
CompareStringW
SetEnvironmentVariableA

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1752a67c7a2980a7623e3f26a8d069a3

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 122KB - Virtual size: 122KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 122KB - Virtual size: 122KB