964f9cc152e0e9a5dbbab28d64a269b9006dbb5a8d16fcae0a1362efd6e567f3

General

Target

964f9cc152e0e9a5dbbab28d64a269b9006dbb5a8d16fcae0a1362efd6e567f3
Size

403KB
MD5

5c4675c8e8d510dde2ccee0e7132f8ac
SHA1

a8284ffd15f0aefdd2a6b3e38702785277e61414
SHA256

964f9cc152e0e9a5dbbab28d64a269b9006dbb5a8d16fcae0a1362efd6e567f3
SHA512

a625e7337aac2fcce4a1c3624eb6a4a1d27d4999ee9955ba69d79967dfc0c04cbd7b615a93aad9830e49e68363f9846d3741df6d0700fe780926a4d10b170b41
SSDEEP

3072:x4BNLQg07MZ1XpC6qCjE9Pz9+Yg0cJjuxwaKiWVUjOJa1:x4BhpwEwbq0c8xBWbJa

Score

N/A

Malware Config

Signatures

Files

964f9cc152e0e9a5dbbab28d64a269b9006dbb5a8d16fcae0a1362efd6e567f3
.exe windows x86

0e19653b6579365e259f3316766d726b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RemovePropW
LockWindowUpdate
GetMessagePos
GetKeyState
MonitorFromPoint
ShowWindowAsync
IsCharAlphaW
DefDlgProcA
VkKeyScanW
LoadBitmapW
CreatePopupMenu
RegisterTasklist

kernel32

GetFileInformationByHandle
OpenEventW
GetCurrentDirectoryW
LocalAlloc
IsBadCodePtr
LocalFree
DisconnectNamedPipe
GetCommTimeouts
GetStringTypeExW
FileTimeToLocalFileTime
CreateFileA
SetTimerQueueTimer
GlobalMemoryStatus

comdlg32

PageSetupDlgW
ReplaceTextW

gdi32

LineDDA
GetViewportOrgEx
CreateDCW
GetObjectW
EnumFontFamiliesW
GetTextExtentExPointW
SetROP2

comctl32

CreateStatusWindowW
CreatePropertySheetPageA
ImageList_LoadImageW
ImageList_Write

Exports

Exports

?FptxpcxdyUiiug@@YGMI@Z
?XxJDdxfyyZjskeCon@@YGPAGKPAF@Z
?Nmmlsbhs@@YGXPAKJ@Z
?Jcbwmglm@@YGPAHE@Z
?MchIarIbtdrncpTzaccwk@@YGJD@Z

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 282KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e19653b6579365e259f3316766d726b

Headers

File Characteristics

Imports

user32

kernel32

comdlg32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 282KB - Virtual size: 282KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 97KB - Virtual size: 97KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 282KB - Virtual size: 282KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 97KB - Virtual size: 97KB

.reloc
Size: 2KB - Virtual size: 2KB