83236cf44a4f97d773664ddebd6faaeb6c0fdf809d43632b49e6345217a4b85f

Sharing

Copy URL

Twitter E-mail

General

Target

83236cf44a4f97d773664ddebd6faaeb6c0fdf809d43632b49e6345217a4b85f
Size

347KB
MD5

1437828abd9a9bb73983adfe5c1d42de
SHA1

4b997c7f4fa682dfcf93fdc85a51622d6c09929f
SHA256

83236cf44a4f97d773664ddebd6faaeb6c0fdf809d43632b49e6345217a4b85f
SHA512

e8805fe3359c493419ac5ce606f97eaf3bdd22a9205ad49d6e133a785fcf20954af932a6e31a522f056f02f46bda48b1263a6f4ec961934140791149056d76a5
SSDEEP

6144:c7KnP8nuDEO3XOAZooWh0IFZVgaFe18Q:cgP8nOEO3XOAQFZY

Score

N/A

Malware Config

Signatures

Files

83236cf44a4f97d773664ddebd6faaeb6c0fdf809d43632b49e6345217a4b85f
.dll windows x86

d9f2339a5e36a4ef421f7c200e208c2a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtectEx
Sleep
GetCurrentDirectoryW
GetWindowsDirectoryW
CompareStringW
CompareStringA
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
MultiByteToWideChar
LCMapStringA
LoadLibraryA
GetSystemTimeAsFileTime
HeapAlloc
RaiseException
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
WideCharToMultiByte
GetTimeZoneInformation
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
HeapReAlloc
HeapCreate
HeapDestroy
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
InitializeCriticalSectionAndSpinCount
SetEnvironmentVariableA

user32

GetMessagePos
UpdateWindow
GetClassNameW
GetDC
GetAsyncKeyState
EnumChildWindows
ShowWindow
GetWindowTextW
FindWindowW
SetClipboardData
DestroyWindow
SendMessageW
SendDlgItemMessageW
CheckRadioButton
SetForegroundWindow

Exports

Exports

Callfat
Rub
Shorelittle

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 382KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9f2339a5e36a4ef421f7c200e208c2a

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 31KB - Virtual size: 31KB

.data Size: 4KB - Virtual size: 382KB

.rsrc Size: 200KB - Virtual size: 199KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 31KB - Virtual size: 31KB

.data
Size: 4KB - Virtual size: 382KB

.rsrc
Size: 200KB - Virtual size: 199KB

.reloc
Size: 9KB - Virtual size: 8KB