2af258f309c59f87e7467bee3b462cb501f7e436f124930bbd5134356cb766bb

General

Target

2af258f309c59f87e7467bee3b462cb501f7e436f124930bbd5134356cb766bb
Size

271KB
MD5

28d93b9065da9dc2ee17a20b6cf621f1
SHA1

fae5c5d25d564767b65b66f12bb476fef70cf0ed
SHA256

2af258f309c59f87e7467bee3b462cb501f7e436f124930bbd5134356cb766bb
SHA512

4309acadf82cd8276f090ee9ed6028fd6e17fb6b3288b70635167c3373339bfb01635a1d27ac9abea5ca6071f8f8725d95109514937190bd3ae06190588eb1fb
SSDEEP

3072:Jte19L6+ICmc/pkrdFYM5XQaL/WLOp4EMDs4fJ1qO:a/PiRoqX5L/COsf1q

Score

N/A

Malware Config

Signatures

Files

2af258f309c59f87e7467bee3b462cb501f7e436f124930bbd5134356cb766bb
.dll windows x86

f4bec3302fa14a974fb759fb7882a8ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegCreateKeyA
RegCreateKeyA
RegDeleteValueW
RegEnumValueA
RegOpenKeyA
RegQueryInfoKeyA
RegOpenKeyW
RegEnumKeyExW
RegQueryValueW
RegEnumValueW
RegLoadKeyA
RegQueryValueExA
RegEnumKeyW
RegQueryInfoKeyW
RegQueryValueExW
RegDeleteKeyW
RegLoadKeyW
RegOpenKeyExA
RegDeleteKeyA

kernel32

GetFileTime
ExitProcess
DeleteFileW
GetLocalTime
CopyFileExA
CopyFileA
GetPriorityClass
CreateDirectoryA
lstrcatA
OpenFileMappingA
WriteFile
HeapFree
GetStdHandle
lstrcmpA
GlobalFree
OpenFile
DeleteFileA
FormatMessageA
FreeResource
CompareStringA
FlushFileBuffers
HeapAlloc
FindClose

user32

DialogBoxParamW
AppendMenuW
GetFocus
CreateIcon
GetScrollInfo
InsertMenuA
AppendMenuA
CloseWindow
GetMenu
DialogBoxParamA
DrawIcon
GetDC
GetCursor
IsMenu
DrawIconEx
CopyImage
GetScrollPos
DrawTextA
EndDialog
IsWindow
LoadMenuA
GetWindowTextLengthA
CopyIcon
DrawTextW

Sections

.kipch
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lonj
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mdcjm
Size: 177KB - Virtual size: 537KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndjg
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4bec3302fa14a974fb759fb7882a8ea

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.kipch Size: 34KB - Virtual size: 33KB

.lonj Size: 55KB - Virtual size: 54KB

.mdcjm Size: 177KB - Virtual size: 537KB

.ndjg Size: 4KB - Virtual size: 3KB

.kipch
Size: 34KB - Virtual size: 33KB

.lonj
Size: 55KB - Virtual size: 54KB

.mdcjm
Size: 177KB - Virtual size: 537KB

.ndjg
Size: 4KB - Virtual size: 3KB