bd07b7cc71a1085a9f1a4e38eb42a8d651f6467e8feb5466901ae57cd6c80fe3

Sharing

Copy URL Twitter E-mail

General

Target

bd07b7cc71a1085a9f1a4e38eb42a8d651f6467e8feb5466901ae57cd6c80fe3
Size

91KB
MD5

fbbb142321587ce9e57cb316e39932e4
SHA1

0b6dd41a469fe3643444d8bb59e3646441dcd39d
SHA256

bd07b7cc71a1085a9f1a4e38eb42a8d651f6467e8feb5466901ae57cd6c80fe3
SHA512

9a7ef6b2da5c22e39c3f06243bcd1f4d7470a661b02990853bb35c62e9936dc64b18a61c9bbf7c0a40a69b173a61271f680b71e1d3762a4b47d63859c2a05359
SSDEEP

1536:VWAgHCyz8KMc2aSNJzqYRh8uzEN/qxJYoIzcLPIDKpETdwXCEXM8K52eE:Uayz8KMc2J5qYRhnz2/MJYoycMBCSprZ

Score

N/A

Malware Config

Signatures

Files

bd07b7cc71a1085a9f1a4e38eb42a8d651f6467e8feb5466901ae57cd6c80fe3
.dll windows x86

18b020f03bb8365d9a7ff957525074cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Read
ImageList_Write

ntdll

RtlUnwind

version

VerFindFileA
GetFileVersionInfoA
VerInstallFileA
GetFileVersionInfoSizeA
VerQueryValueA

kernel32

LocalFree
WriteFile
GetStdHandle
CreateNamedPipeA
FindClose
CloseHandle
HeapAlloc
QueryPerformanceCounter
HeapFree
GetProfileStringW
GetProcessHeap
InitializeCriticalSection
Sleep
LeaveCriticalSection
GetNamedPipeInfo
Beep
MulDiv
LocalReAlloc
CompareStringW
ExitThread
RaiseException
InterlockedExchange
GetLastError
EnterCriticalSection
GetLocalTime
LoadLibraryA
OpenThread
GetFileType
DeleteCriticalSection

user32

CreateIcon
GetForegroundWindow
MoveWindow
GetWindow
CreateIconIndirect
GetActiveWindow
ReleaseDC
GetDC
DrawTextA
ShowWindow

gdi32

ExtCreatePen
SelectObject
CreateCompatibleDC
MaskBlt
SetMapMode

msvcrt

memset

Exports

Exports

_CreateSweetPlace@16
_GetAwayFromMe@20

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 40B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

18b020f03bb8365d9a7ff957525074cb

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

ntdll

version

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: - Virtual size: 40B

DATA Size: 512B - Virtual size: 512B

.rsrc Size: 81KB - Virtual size: 81KB

.reloc Size: 512B - Virtual size: 268B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: - Virtual size: 40B

DATA
Size: 512B - Virtual size: 512B

.rsrc
Size: 81KB - Virtual size: 81KB

.reloc
Size: 512B - Virtual size: 268B