c635275b21fc3971c6cdc85a11a74055dde3b00a51448a35a1ca4a41e18ac60d

Sharing

Copy URL Twitter E-mail

General

Target

c635275b21fc3971c6cdc85a11a74055dde3b00a51448a35a1ca4a41e18ac60d
Size

355KB
MD5

9fe4bef369ae780afd0605a9f0233c0c
SHA1

1527898cbfc14cf5675a5b82af368a4a85923db7
SHA256

c635275b21fc3971c6cdc85a11a74055dde3b00a51448a35a1ca4a41e18ac60d
SHA512

a2afea1a183b6df334a021fb8cf99a941dc8c9c45f161052f9ed2bee563ef0552b3a4cdc37b4e2148a75aa527708315b93933113821f0afe08e378d0b9325d60
SSDEEP

6144:6AmBuME09sgBJ9migE/Vkaggcji1J/6h8muXrdCcYV:66ME6zNkxzjiJ/6h8m8CcY

Score

N/A

Malware Config

Signatures

Files

c635275b21fc3971c6cdc85a11a74055dde3b00a51448a35a1ca4a41e18ac60d
.dll windows x86

f392ba5a340ecf7c51161ef2e247316a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
UnhandledExceptionFilter
LoadLibraryW
GetModuleHandleW
GetModuleHandleW
DeleteCriticalSection
VirtualProtect
CreateFileW
InterlockedDecrement
GetSystemTimeAsFileTime
HeapAlloc
LeaveCriticalSection
InterlockedIncrement
LoadLibraryA
GetCurrentProcess
GetCurrentProcess
GetModuleHandleA
InitializeCriticalSection
LeaveCriticalSection
InterlockedExchange
InterlockedCompareExchange
CreateFileW
LocalAlloc
CloseHandle
GetModuleFileNameA
LoadLibraryW
HeapFree
HeapFree
InterlockedDecrement
InterlockedDecrement
lstrlenA
HeapFree
HeapAlloc
LocalAlloc
GetProcAddress
GetModuleHandleW
CloseHandle
FreeLibrary
GetCurrentProcess
GetCurrentThreadId
InterlockedExchange
GetSystemTimeAsFileTime
HeapAlloc
GetModuleHandleA
GetCurrentProcessId
HeapFree
LocalAlloc
LoadLibraryW
HeapAlloc
InterlockedIncrement
Sleep
GetModuleFileNameA
LocalAlloc
DeleteCriticalSection
CreateEventW
CreateThread
MultiByteToWideChar
DeleteCriticalSection
GetProcessHeap
GetModuleFileNameA
HeapAlloc
MultiByteToWideChar
Sleep
MultiByteToWideChar
lstrlenA
CloseHandle
GetLastError
MultiByteToWideChar
UnhandledExceptionFilter
HeapFree
InterlockedExchange
GetModuleHandleW
InitializeCriticalSection
GetLastError
FreeLibrary
DisableThreadLibraryCalls
LeaveCriticalSection
GetModuleHandleA
GetTickCount
GetModuleHandleA
FreeLibrary
HeapAlloc
lstrcmpiW
FreeLibrary
lstrlenA
GetLastError
HeapFree
LeaveCriticalSection
LocalFree
GetSystemTimeAsFileTime
CloseHandle
GetModuleFileNameA
VirtualProtect
CreateFileW
GetLastError
CreateThread
GetModuleFileNameA
LoadLibraryA
DisableThreadLibraryCalls
GetModuleFileNameW
DisableThreadLibraryCalls
ReadFile
lstrcmpiW

user32

DialogBoxParamW
SetFocus
SetDlgItemTextW
GetParent
CharNextW
TranslateMessage
GetSysColor
SetCursor
LoadCursorW
GetDC
InvalidateRect
GetWindowRect
SetForegroundWindow
ReleaseDC
SetWindowPos
GetDC
DestroyWindow
DestroyWindow
GetDC
IsDlgButtonChecked
BeginPaint
KillTimer
SetWindowPos
BeginPaint
DestroyWindow
DialogBoxParamW
SendDlgItemMessageW
DefWindowProcW
SendMessageW
DestroyWindow
DialogBoxParamW
GetParent
SetDlgItemTextW
PostQuitMessage
BeginPaint
SetTimer
LoadStringW
GetParent
PeekMessageW
PostMessageW
SetWindowTextW
DispatchMessageW
GetDC
GetClientRect
EnableWindow
BeginPaint
IsWindow
SetTimer
PostMessageW
EndDialog
BeginPaint
GetSysColor
SetWindowPos
IsDlgButtonChecked
SetCursor
IsWindow
GetSysColor
IsWindow
GetSysColor
SetCursor
LoadCursorW
GetFocus
GetSystemMetrics
GetWindowLongW
GetSystemMetrics
IsWindow
GetParent
InvalidateRect
BeginPaint
DispatchMessageW
InvalidateRect
SetWindowLongW
GetDC
GetDlgItem
SetCursor
GetWindowLongW
GetDesktopWindow
SetWindowTextW
EndPaint
PostMessageW
SendDlgItemMessageW
EndDialog
DestroyWindow
PostQuitMessage
ShowWindow
GetDC
SetDlgItemTextW
IsWindow
BeginPaint
DispatchMessageW
GetDC
LoadCursorW
IsDlgButtonChecked
CreateWindowExW
GetSysColor
GetClientRect
ShowWindow
EnableWindow
GetFocus
InvalidateRect
LoadCursorW
SetDlgItemTextW
ReleaseDC
CharNextW
CharNextW
GetDesktopWindow
SetTimer

Exports

Exports

EXExBm
WBGZFEYofa
XzlOTXKD
MyMSrHZBT
IlrPMJDPH
mUCPu
SgTFACLUO
DQHKfhGV
eqJFuPueEW
woVMXy

Sections

.text
Size: 347KB - Virtual size: 532KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f392ba5a340ecf7c51161ef2e247316a

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.text Size: 347KB - Virtual size: 532KB

.edata Size: 512B - Virtual size: 4KB

.data Size: - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 347KB - Virtual size: 532KB

.edata
Size: 512B - Virtual size: 4KB

.data
Size: - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB