c1b75e400be960e845707c5fb713f1d03f513ed3e1d57ecb26d651dee62b5172

Sharing

Copy URL Twitter E-mail

General

Target

c1b75e400be960e845707c5fb713f1d03f513ed3e1d57ecb26d651dee62b5172
Size

137KB
MD5

b26d6dd1f93763dc6f011f4ee648a1c0
SHA1

52faa622e5014877563aea9a0d626fc352ffd42f
SHA256

c1b75e400be960e845707c5fb713f1d03f513ed3e1d57ecb26d651dee62b5172
SHA512

bfe23890298d76075c561668f2dc02ecf6102507da33217617729ef32e74a7ed941cab754c36e520676122f838fd914da2b1e86b9c6aa69bcc8c81849d402c31
SSDEEP

3072:9h+BXLb1IiAYE/1HJICJm01Y0AbfjeiBAIoOrMnZmm4:YX11A/NHRJm0K0sWlxZmm4

Score

N/A

Malware Config

Signatures

Files

c1b75e400be960e845707c5fb713f1d03f513ed3e1d57ecb26d651dee62b5172
.dll windows x86

d1b4ffca18cb3eb78439b4045bb40baa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegReplaceKeyA
RegEnumKeyW
RegQueryValueExA
RegOpenKeyExA
RegQueryValueExW
RegDeleteKeyW
RegDeleteValueA
RegCloseKey
RegQueryValueA
RegCreateKeyW
RegQueryInfoKeyW
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegEnumKeyA
RegCreateKeyExW
RegLoadKeyA
RegEnumKeyExW
RegQueryValueW
RegEnumValueW
RegOpenKeyA
RegFlushKey
RegLoadKeyA
RegQueryValueExA
RegCloseKey
RegDeleteKeyW
RegEnumKeyA
RegCreateKeyExW
RegQueryValueW
RegDeleteKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegLoadKeyA
RegEnumKeyA
RegQueryValueW
RegQueryValueExA
RegGetKeySecurity
RegOpenKeyW
RegEnumValueW
RegQueryValueA
RegReplaceKeyA
RegCreateKeyW

user32

CreateIcon
CopyIcon
CopyRect
AppendMenuA
DrawTextA
IsMenu
BlockInput
LoadMenuA
AppendMenuW
GetMenu
GetMenu
IsWindow
CloseWindow
CalcMenuBar
DrawTextA
CopyRect
AppendMenuA
DialogBoxParamA
InsertMenuA
LoadMenuA
CopyIcon
GetCursor
BlockInput
GetWindow
GetMenu
DrawIconEx
DialogBoxParamW
LoadMenuA
CreateIcon
IsMenu
GetWindowTextLengthA
GetFocus
AppendMenuW
BlockInput
CloseWindow
GetWindow
IsMenu
DrawTextW
GetMenu
CopyImage
GetFocus
LoadCursorA
AlignRects
DrawIconEx
InsertMenuA
CreateIcon
GetWindowTextA
GetCursor
CopyRect
GetWindowTextLengthA
DrawTextW
IsWindow
GetWindow
EndDialog
CreateIcon
AlignRects
CloseWindow
LoadCursorA
LoadMenuA
GetFocus
GetDlgItem
DrawIcon
GetMenu
AppendMenuW
DialogBoxParamW
GetCursor
GetWindowTextA

kernel32

CopyFileW
WriteFile
Sleep
GetLastError
GetFileTime
GetComputerNameA
GetStdHandle
GetCommandLineA
ReadConsoleA
GetCPInfo
GetFileSize
OpenFile
DeleteAtom
OpenFileMappingA

Sections

DATA
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 714B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.b2124
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 470B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1b4ffca18cb3eb78439b4045bb40baa

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

DATA Size: 11KB - Virtual size: 10KB

.data Size: - Virtual size: 714B

.INIT Size: 119KB - Virtual size: 119KB

.b2124 Size: 4KB - Virtual size: 4KB

.edata Size: 512B - Virtual size: 470B

.rsrc Size: 512B - Virtual size: 144KB

DATA
Size: 11KB - Virtual size: 10KB

.data
Size: - Virtual size: 714B

.INIT
Size: 119KB - Virtual size: 119KB

.b2124
Size: 4KB - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 470B

.rsrc
Size: 512B - Virtual size: 144KB