0e9e1b63a28cfe09f00af1b494c5968889d6b763571e3fa5a8175269a7b4cd7e

Sharing

Copy URL Twitter E-mail

General

Target

0e9e1b63a28cfe09f00af1b494c5968889d6b763571e3fa5a8175269a7b4cd7e
Size

2.1MB
MD5

38ed4a1e492e051fb3985173108cef07
SHA1

ec9b801bb12014d333be320a8859f6541a58b561
SHA256

0e9e1b63a28cfe09f00af1b494c5968889d6b763571e3fa5a8175269a7b4cd7e
SHA512

67b528325b0c5775b6efdfade0d57505895eda3d4883a22480168d8a35f4692db514c81b47aa11683bfd06967967b7fb43413d6177908dbf23743e1120f75fbe
SSDEEP

49152:hdNFYD5w06l9IcHL+K60sn6bsczKZEz+20hQ8X2hsFs4t:hdgx6cADpID8+2u3X2hsFt

Score

5^/10

pdf

Malware Config

Signatures

Malformed data in PDF
A PDF can contain malformed data to evade detection
pdf

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/卡西欧计算器fx-82ES/SimU8.dll
unpack001/卡西欧计算器fx-82ES/SimU8engine.dll
unpack001/卡西欧计算器fx-82ES/卡西欧计算器fx-82ES.exe

Files

0e9e1b63a28cfe09f00af1b494c5968889d6b763571e3fa5a8175269a7b4cd7e
.zip
卡西欧计算器fx-82ES/SimU8.dll
.dll windows:4 windows x86 arch:x86

ac4feee90869b8c542c23a194138dcfd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

simu8engine

?m_CheckInterrupt@CSimU8core@@QAEHXZ
?m_Execute@CSimU8core@@QAEHXZ
?m_GetCount@CSimU8core@@QAEHPAI@Z
?m_ReadCodeMemory@CSimU8core@@QAEHIIPAE@Z
?m_LogStop@CSimU8core@@QAEHXZ
?m_LogStart2@CSimU8core@@QAEHPBD@Z
?m_LogStart@CSimU8core@@QAEHXZ
?m_WriteReg@CSimU8core@@QAEHEI@Z
?m_ReadReg@CSimU8core@@QAEHEPAI@Z
?m_WriteBitDataMemory@CSimU8core@@QAEHIEE@Z
?m_WriteDataMemory@CSimU8core@@QAEHIIPAE@Z
?m_ReadDataMemory@CSimU8core@@QAEHIIPAE@Z
?m_WriteCodeMemory@CSimU8core@@QAEHIIPAE@Z
?m_SimReset@CSimU8core@@QAEHXZ
?m_LoadHexFile@CSimU8core@@QAEHPBD@Z
?m_SetCodeMemoryDefaultCode@CSimU8core@@QAEHG@Z
?m_SetRomWindowSize@CSimU8core@@QAEHII@Z
?m_SetDataMemorySize@CSimU8core@@QAEHII@Z
?m_SetCodeMemorySize@CSimU8core@@QAEHII@Z
??1CSimU8core@@UAE@XZ
??0CSimU8core@@QAE@XZ

kernel32

GetProcAddress
GetModuleHandleA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
FreeLibrary
LoadLibraryA
GetProcessVersion
GetCurrentProcess
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
HeapAlloc
HeapFree
GetCommandLineA
ExitProcess
MultiByteToWideChar
CreateThread
ExitThread
HeapSize
HeapReAlloc
GetACP
SetUnhandledExceptionFilter
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetStdHandle
GetLocaleInfoW
WideCharToMultiByte
Sleep
SetLastError
WaitForSingleObject
InterlockedIncrement
WritePrivateProfileStringA
GlobalFlags
GetVersion
lstrlenA
lstrcpyA
lstrcatA
SetErrorMode
InterlockedDecrement
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
ResetEvent
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
lstrcpynA
SuspendThread
SetThreadPriority
ResumeThread
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
OpenFileMappingA
CreateFileMappingA
GetLastError
MapViewOfFile
InterlockedExchange
OpenEventA
CreateEventA
UnmapViewOfFile
CloseHandle
SetEvent
TerminateProcess

user32

RegisterWindowMessageA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
DefWindowProcA
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
GetWindowTextA
SetWindowTextA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
wsprintfA
PostQuitMessage
PostMessageA
SendMessageA
SetCursor
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
EnableWindow
GetFocus

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
CreateBitmap

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA

comctl32

ord17

Exports

Exports

GetCount
LoadHexFile
LogStart
LogStart2
LogStop
ReadCodeMemory
ReadDataMemory
ReadReg
SetCallbackFunc
SetCodeMemoryDefaultCode
SetCodeMemorySize
SetDataMemorySize
SetRomWindowSize
SetWait
SimReset
SimStart
SimStop
WriteBitDataMemory
WriteCodeMemory
WriteDataMemory
WriteReg

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
卡西欧计算器fx-82ES/SimU8engine.dll
.dll windows:4 windows x86 arch:x86

cc0baae1a7882a2e4762f47a7161c0da

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

mfc42

ord825
ord533
ord798
ord800
ord537
ord1200
ord1567
ord268
ord2818
ord540
ord941
ord860
ord5465
ord3318
ord5194
ord1168
ord1253
ord342
ord823
ord1182
ord3663
ord5440
ord6383
ord5450
ord6394

msvcrt

??1type_info@@UAE@XZ
free
_initterm
malloc
_adjust_fdiv
?terminate@@YAXXZ
_except_handler3
_onexit
__dllonexit
isdigit
toupper
isxdigit
_mbsicmp
exit
__CxxFrameHandler
_exit

msvcp60

?setw@std@@YA?AU?$_Smanip@H@1@H@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@PBD@Z
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
??1_Winit@std@@QAE@XZ
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??0Init@ios_base@std@@QAE@XZ

Exports

Exports

??0CSimU8core@@QAE@XZ
??1CSimU8core@@UAE@XZ
??_7CSimU8core@@6B@
?AnalyzeInputHexFile@CSimU8core@@QAEHAAVCString@@@Z
?AnalyzeIntelHex@CSimU8core@@QAEHAAVCString@@@Z
?CheckIntelHexCheckSum@CSimU8core@@QAEHAAVCString@@@Z
?GetSimRun@CSimU8core@@QAEEXZ
?InitSetting@CSimU8core@@QAEXXZ
?InputFileClassify@CSimU8core@@QAEHAAVCString@@AA_K1@Z
?IsRomWinRange@CSimU8core@@QAE_NI@Z
?ReadDMemory@CSimU8core@@QAEHIPAE@Z
?ReadWordDMemory@CSimU8core@@QAEHIPAG@Z
?StrToByte@CSimU8core@@QAEEAAVCString@@H@Z
?StrToWord@CSimU8core@@QAEGAAVCString@@H@Z
?WriteDMemory@CSimU8core@@QAEHIE@Z
?WriteWordDMemory@CSimU8core@@QAEHIG@Z
?instCalc@CSimU8core@@QAEXEEE@Z
?instCalcErm@CSimU8core@@QAEXEEE@Z
?instCalcImm7@CSimU8core@@QAEXEEE@Z
?instShift@CSimU8core@@QAEXEEE@Z
?m_CheckInterrupt@CSimU8core@@QAEHXZ
?m_Execute@CSimU8core@@QAEHXZ
?m_GetCount@CSimU8core@@QAEHPAI@Z
?m_GetDSR@CSimU8core@@QAEEXZ
?m_GetDsrPrefix@CSimU8core@@QAEEXZ
?m_LoadHexFile@CSimU8core@@QAEHPBD@Z
?m_LogStart2@CSimU8core@@QAEHPBD@Z
?m_LogStart@CSimU8core@@QAEHXZ
?m_LogState@CSimU8core@@QAEHXZ
?m_LogStop@CSimU8core@@QAEHXZ
?m_ReadCodeMemory@CSimU8core@@QAEHIIPAE@Z
?m_ReadDataMemory@CSimU8core@@QAEHIIPAE@Z
?m_ReadReg@CSimU8core@@QAEHEPAI@Z
?m_SetCodeMemoryDefaultCode@CSimU8core@@QAEHG@Z
?m_SetCodeMemorySize@CSimU8core@@QAEHII@Z
?m_SetDSR@CSimU8core@@QAEXE@Z
?m_SetDataMemorySize@CSimU8core@@QAEHII@Z
?m_SetDsrPrefix@CSimU8core@@QAEXE@Z
?m_SetRomWindowSize@CSimU8core@@QAEHII@Z
?m_SimReset@CSimU8core@@QAEHXZ
?m_WriteBitDataMemory@CSimU8core@@QAEHIEE@Z
?m_WriteCodeMemory@CSimU8core@@QAEHIIPAE@Z
?m_WriteDataMemory@CSimU8core@@QAEHIIPAE@Z
?m_WriteReg@CSimU8core@@QAEHEI@Z

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 908B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
卡西欧计算器fx-82ES/fx-82ES_etc_CN.pdf
.pdf
卡西欧计算器fx-82ES/卡西欧计算器fx-82ES.exe
.exe windows:4 windows x86 arch:x86

fe514100b09a8fb51073f96737bb2e95

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

simu8

WriteBitDataMemory
ReadDataMemory
SimReset
SetCodeMemorySize
SetDataMemorySize
SetRomWindowSize
SetCodeMemoryDefaultCode
SetCallbackFunc
SetWait
WriteDataMemory
SimStart
WriteCodeMemory

kernel32

SystemTimeToFileTime
SetErrorMode
FormatMessageA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTickCount
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
LocalFileTimeToFileTime
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileSize
GetProfileStringA
Sleep
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GetModuleFileNameA
CloseHandle
WaitForSingleObject
GlobalAddAtomA
GetProcAddress
GetModuleHandleA
lstrcpyA
GlobalFindAtomA
GlobalGetAtomNameA
lstrcatA
GetVersion
FreeLibrary
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
GetFileAttributesA
lstrcpynA
GetShortPathNameA
GetStringTypeExA
GetTempFileNameA
GetFullPathNameA
SetFileTime
GetFileTime
GetDiskFreeSpaceA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetOEMCP
GetCPInfo
GetThreadLocale
GetProcessVersion
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
SizeofResource
GlobalFlags
MulDiv
SetLastError
ReleaseSemaphore
CreateSemaphoreA
GetLastError

user32

CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
CharUpperA
InflateRect
RegisterClipboardFormatA
PostThreadMessageA
CharNextA
DestroyIcon
LoadStringA
GetSysColorBrush
LoadCursorA
DeleteMenu
InsertMenuA
PtInRect
GetClassNameA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
InvalidateRect
LoadIconA
MapWindowPoints
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
GetTopWindow
IsChild
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
MapDialogRect
GetWindow
SetWindowContextHelpId
SetFocus
ShowWindow
SetWindowPos
MoveWindow
SetWindowLongA
GetDlgCtrlID
UpdateWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
GetCapture
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
IsWindowUnicode
EnableWindow
SendMessageA
GetSystemMetrics
LoadBitmapA
ClientToScreen
GetSubMenu
ModifyMenuA
GetMenuStringA
LoadMenuA
ReleaseDC
GetDC
GetWindowRect
GetParent
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
IsWindowEnabled
GetDlgItem
GetWindowLongA
DestroyWindow
CreateDialogIndirectParamA
IsWindow
SetActiveWindow
GetActiveWindow
EndDialog
GetNextDlgTabItem
PostQuitMessage
PostMessageA
ShowOwnedPopups
SetCursor
MessageBoxA
GetLastActivePopup
SetWindowsHookExA
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos

gdi32

RestoreDC
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
SaveDC
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
GetObjectA
GetBitmapBits
SetBitmapBits
StretchBlt
CreateCompatibleDC
BitBlt
CreateDIBitmap
GetTextExtentPointA
DeleteDC

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCreateKeyExA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
GetFileSecurityA
SetFileSecurityA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey

shell32

SHGetFileInfoA
ExtractIconA
DragFinish
DragQueryFileA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
CoRegisterMessageFilter
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize

olepro32

ord253

oleaut32

SysStringLen
SysFreeString
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysAllocStringByteLen

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac4feee90869b8c542c23a194138dcfd

Headers

File Characteristics

Imports

simu8engine

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 20KB - Virtual size: 31KB

.rsrc Size: 12KB - Virtual size: 8KB

.reloc Size: 20KB - Virtual size: 17KB

cc0baae1a7882a2e4762f47a7161c0da

Headers

File Characteristics

Imports

mfc42

msvcrt

msvcp60

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 908B

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

fe514100b09a8fb51073f96737bb2e95

Headers

File Characteristics

Imports

simu8

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 20KB - Virtual size: 31KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 20KB - Virtual size: 17KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 908B

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB