497915c375e4647d82e089e288cadc1cd681f068b8a2dc1d3bea0994c8dfef8a

Sharing

Copy URL

Twitter E-mail

General

Target

497915c375e4647d82e089e288cadc1cd681f068b8a2dc1d3bea0994c8dfef8a
Size

2.3MB
MD5

87855c528aedbc7253d4b60010015b0c
SHA1

e1d333aa6d1b905ffa92feff0e96ea41ea330ba9
SHA256

497915c375e4647d82e089e288cadc1cd681f068b8a2dc1d3bea0994c8dfef8a
SHA512

753cd2c0b762a45ba0c05639e82914350ed4444f619b8454ab6aaaaaad69515b05dfebe07223c7ebc39db7e8a7bbd2197df85161cceb689b8eb24c3848a49f20
SSDEEP

6144:/GlqosvPLYZiWYG+0KTwmFI4Iu6WgEWasmlbUhDRc:Cqo3ZLYGzKT95wWQFT9c

Score

N/A

Malware Config

Signatures

Files

497915c375e4647d82e089e288cadc1cd681f068b8a2dc1d3bea0994c8dfef8a
.dll windows x86

dedb8f266856e2069715e0c7f40ae55a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
GetACP
GetTimeZoneInformation
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
Sleep
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcAddress
LoadLibraryA
HeapSize
TerminateProcess
GetProfileStringA
InterlockedExchange
SetCurrentDirectoryA
GetCurrentDirectoryA
GlobalUnlock
GlobalLock
GlobalAlloc
CloseHandle
OpenProcess
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
GetVersion
FreeLibrary
WideCharToMultiByte
LocalFree
FormatMessageA
GetModuleFileNameA
GetCurrentThread
lstrcmpA
InterlockedDecrement
GlobalFree
SetLastError
MulDiv
lstrcpynA
LocalAlloc
InitializeCriticalSection
LockResource
LoadResource
HeapAlloc
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapFree
RtlUnwind
SizeofResource
FindResourceA
GetFileAttributesA
GetDriveTypeA
TlsAlloc
lstrlenA
GetLastError
MultiByteToWideChar
GetFileTime
GetFileSize
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetErrorMode
GetThreadLocale
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
InterlockedIncrement

user32

LoadIconA
CreateMenu
GetClipboardViewer
DestroyMenu
CharUpperA
DestroyIcon
IsCharAlphaNumericA
GetQueueStatus
GetKeyboardLayout
GetOpenClipboardWindow
GetKeyboardType
GetWindowTextLengthW
IsCharAlphaA
GetCapture
GetDlgCtrlID
GetListBoxInfo
GetInputState
IsCharAlphaNumericW
GetMessagePos
IsMenu
GetWindowContextHelpId
CharUpperW
IsWindowUnicode
OemKeyScan
GetMenuItemCount
CharLowerW
GetMessageTime
GetFocus
AnyPopup
OpenIcon
GetClipboardOwner
GetParent
IsGUIThread
CharLowerA
IsWindowEnabled
ShowCaret
GetKeyState
GetKBCodePage
GetForegroundWindow
IsCharLowerW
DestroyWindow
InSendMessage
GetSysColor
GetAsyncKeyState

gdi32

DeleteObject
GetTextAlign
CancelDC
GetPolyFillMode
SaveDC
AddFontResourceA
CloseFigure
GetDCPenColor
GetObjectType
CreatePatternBrush
GetFontLanguageInfo
EndPath
GetPixelFormat
RealizePalette
UpdateColors
GetEnhMetaFileA
WidenPath
SwapBuffers
GetTextCharacterExtra
DeleteMetaFile
GetDCBrushColor
GdiFlush
CreateMetaFileA
GetBkMode
DeleteEnhMetaFile
GetTextCharset
GetEnhMetaFileBits
GetStockObject

advapi32

RegOpenKeyA

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.2MB - Virtual size: 2.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata2
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dedb8f266856e2069715e0c7f40ae55a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 2.2MB - Virtual size: 2.2MB

.rdata3 Size: 1KB - Virtual size: 1KB

.data Size: 6KB - Virtual size: 5KB

.rdata2 Size: 1KB - Virtual size: 1KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 2.2MB - Virtual size: 2.2MB

.rdata3
Size: 1KB - Virtual size: 1KB

.data
Size: 6KB - Virtual size: 5KB

.rdata2
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 3KB - Virtual size: 3KB