eab5d45426f4b0b6f6333268de179112f1f364493695f0cfc78fce4d476a83b6

General

Target

eab5d45426f4b0b6f6333268de179112f1f364493695f0cfc78fce4d476a83b6
Size

62KB
MD5

54f0278bee90696bbde199a933496f3d
SHA1

26baaa7e8368892732a20b0100ff1aa361a3bef0
SHA256

eab5d45426f4b0b6f6333268de179112f1f364493695f0cfc78fce4d476a83b6
SHA512

ced02e37a9df9162b83467eda239a9075e6fbb535fda55f9427128828673193d2e648e4b948454e19b00195e6a1cbcd5fd008b61d3d1823367c7934024e61ae7
SSDEEP

1536:nE0W23rt+T2Av7lVoFS3+MsU6HOiME/dnnPl:E/270rRmVl9ZMupP

Score

N/A

Malware Config

Signatures

Files

eab5d45426f4b0b6f6333268de179112f1f364493695f0cfc78fce4d476a83b6
.exe windows x86

f86acbdbdac060cbe0fdc9d14ec313ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
FindCloseChangeNotification
OutputDebugStringA
GetCurrentDirectoryA
IsBadStringPtrW
GetTimeFormatW
GetLastError
GetCompressedFileSizeW
FindResourceExW
ReplaceFileW
FindFirstChangeNotificationA
VirtualFree
ExitProcess
VirtualAlloc
ReplaceFileA
LocalHandle
LoadLibraryA
LocalReAlloc

msvcrt

ispunct
memcpy
_adj_fpatan
_getdcwd
_cexit
_atoldbl
_mbsncoll
_wenviron
_ismbcprint
fwrite
_chkesp
_strset
is_wctype

gdi32

GetTextMetricsW
CreateRectRgn
GetDeviceCaps
CreateRectRgnIndirect
GetDIBits
Polygon
CreateFontIndirectW

user32

FindWindowW
GetClassLongW
GetMenuState
LoadCursorFromFileA
FillRect
OpenClipboard
EnableMenuItem

winmm

mixerSetControlDetails
midiInGetID
waveInGetErrorTextA
midiOutGetErrorTextA
mmioInstallIOProcA
waveInUnprepareHeader
midiInOpen
CloseDriver
waveOutGetPitch
joyGetPosEx
auxGetNumDevs

Exports

Exports

DyhTjosnaKlh
UbMnjortlOhrpzlt

Sections

.text
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f86acbdbdac060cbe0fdc9d14ec313ea

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

winmm

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 15KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 13KB - Virtual size: 12KB

.rsrc Size: 29KB - Virtual size: 28KB

.reloc Size: 512B - Virtual size: 52B

.text
Size: 16KB - Virtual size: 15KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 13KB - Virtual size: 12KB

.rsrc
Size: 29KB - Virtual size: 28KB

.reloc
Size: 512B - Virtual size: 52B