eba9a392c0ea8e603e7f7618fd5346e99bb226ca3f8dcf9ff3d9e977057e5e5a

Sharing

Copy URL Twitter E-mail

General

Target

eba9a392c0ea8e603e7f7618fd5346e99bb226ca3f8dcf9ff3d9e977057e5e5a
Size

885KB
MD5

40ce1923497e9159001ecabf3ceb4039
SHA1

85f2b8ffcc8ec6d31f7cc22c67cae3df8cc2b35f
SHA256

eba9a392c0ea8e603e7f7618fd5346e99bb226ca3f8dcf9ff3d9e977057e5e5a
SHA512

2920937e3225fd18ae6db32c56d547f244c28e0094442253fcee2922f514f6cc3f1d05882383dcfac7ec8be9331a3054f2a9f087b3c7ff775f8a1f6b4ef53d62
SSDEEP

12288:2DQ9rmqkkpqLsKn5f8p3c3ZpyF1uP2bnsxq7+Qp6nupCfs:2KrmBLL8WppyFUP2b17+66yc

Score

N/A

Malware Config

Signatures

Files

eba9a392c0ea8e603e7f7618fd5346e99bb226ca3f8dcf9ff3d9e977057e5e5a
.exe windows x86

9306d2bdedb0822191d1d0acd11fb983

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

xli18nex

XLI18N_Uninitialize

xlbughandler

_XL_SetReportShowMode@4

libexpat

ord25

liblua

lua_rawseti

imagehlp

CheckSumMappedFile

xlgraphic

_XL_UpdateTexture@12

uactool

XL_IsWindows7

xlluaruntime

_XLLRT_FireContainerEvent@12

mfc71u

ord590

msvcr71

wcscmp

user32

CharLowerBuffW

gdi32

OffsetViewportOrgEx

msimg32

TransparentBlt

comdlg32

GetOpenFileNameW

advapi32

RegQueryValueExW

shell32

SHGetSpecialFolderPathW

comctl32

ImageList_EndDrag

shlwapi

StrCmpW

ole32

CLSIDFromString

oleaut32

SafeArrayCopy

urlmon

URLDownloadToCacheFileW

atl71

ord47

msvcp71

??$?6U?$char_traits@D@std@@@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z

version

VerQueryValueW

winmm

PlaySoundW

sqlite3

sqlite3_finalize

mini_unzip_dll

mini_unzip_dll

wintrust

WTHelperGetProvCertFromChain

crypt32

CertGetNameStringW

ws2_32

ntohs

Sections

.text
Size: 539KB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 344KB - Virtual size: 348KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9306d2bdedb0822191d1d0acd11fb983

Headers

File Characteristics

Imports

kernel32

xli18nex

xlbughandler

libexpat

liblua

imagehlp

xlgraphic

uactool

xlluaruntime

mfc71u

msvcr71

user32

gdi32

msimg32

comdlg32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

urlmon

atl71

msvcp71

version

winmm

sqlite3

mini_unzip_dll

wintrust

crypt32

ws2_32

Sections

.text Size: 539KB - Virtual size: 2.6MB

.rsrc Size: 344KB - Virtual size: 348KB

.text
Size: 539KB - Virtual size: 2.6MB

.rsrc
Size: 344KB - Virtual size: 348KB