b7f84405d7445420c3960b91a5fdb75e539c273c2f5c9915f050544e077ba0e0

Sharing

Copy URL Twitter E-mail

General

Target

b7f84405d7445420c3960b91a5fdb75e539c273c2f5c9915f050544e077ba0e0
Size

198KB
MD5

a7510a11dc4c4adc25b701f85565bfa2
SHA1

bf3507e419a0eb27fd052552dc52003e4a0b5820
SHA256

b7f84405d7445420c3960b91a5fdb75e539c273c2f5c9915f050544e077ba0e0
SHA512

fba4ff4d8fa20fd580633a68987bee9067ab524cd57465da0db14c217c408f0cb5fc748e9919e8c6d9847c77a9c509b73ecd9489f6ec386470008268e5cfcc16
SSDEEP

3072:NgVlqSaCwd70wOTuqvVAnI6ZMUAMdvpSc6tgTLdIENNCznYibj9WdgQDpHBiTxwM:iVl0dQww8I6ZXAGpifLUdgQ9HawM

Score

N/A

Malware Config

Signatures

Files

b7f84405d7445420c3960b91a5fdb75e539c273c2f5c9915f050544e077ba0e0
.exe windows x86

8cc2e5433e0a781c30e72c6f53ebc6c1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoRevokeClassObject

gdi32

GetColorSpace
CreateFontIndirectW
SetBkMode
RestoreDC
InvertRgn
MoveToEx
CreateDCW
DeleteObject
CreateSolidBrush
GetStockObject
SetTextColor
GetEnhMetaFileHeader
InvertRgn
GetBkMode
GetObjectW
SelectClipRgn
GetColorSpace
IntersectClipRect

advapi32

RegQueryValueExA
RegDeleteValueW
RegOpenKeyExW
RegDeleteKeyW
GetLengthSid
AllocateAndInitializeSid
RegCreateKeyExA
SetServiceStatus
StartServiceW
DeleteService
RegCreateKeyW
RegCreateKeyExW

kernel32

GlobalHandle
VirtualAlloc
ExitProcess
GetStartupInfoW
GetFileTime
GetProcessHeap
WideCharToMultiByte
GetProcessHeap
InterlockedDecrement
LoadLibraryW
ExitProcess
InterlockedIncrement
GetCurrentThreadId
GetStartupInfoW
VirtualAlloc

comctl32

DestroyPropertySheetPage
ImageList_Remove

msvcrt

_osver
_fsopen
tolower

user32

CreateDialogParamW
GetSysColor
SetCursor
wsprintfA

comdlg32

GetSaveFileNameA
ChooseFontA
PrintDlgA
GetFileTitleA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW

Sections

.text
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 80KB - Virtual size: 456KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 76KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8cc2e5433e0a781c30e72c6f53ebc6c1

Headers

DLL Characteristics

File Characteristics

Imports

ole32

gdi32

advapi32

kernel32

comctl32

msvcrt

user32

comdlg32

version

Sections

.text Size: 8KB - Virtual size: 9KB

.data Size: 17KB - Virtual size: 40KB

.rdata Size: 80KB - Virtual size: 456KB

.tls Size: 76KB - Virtual size: 84KB

.rsrc Size: 16KB - Virtual size: 16KB

.text
Size: 8KB - Virtual size: 9KB

.data
Size: 17KB - Virtual size: 40KB

.rdata
Size: 80KB - Virtual size: 456KB

.tls
Size: 76KB - Virtual size: 84KB

.rsrc
Size: 16KB - Virtual size: 16KB