8ed0cd8f7ca50037871235bb0d78135ac5f9468cc84f95446a730b58ef8bd539

Sharing

Copy URL Twitter E-mail

General

Target

8ed0cd8f7ca50037871235bb0d78135ac5f9468cc84f95446a730b58ef8bd539
Size

28KB
MD5

8adaf8fc37dc7310673a9ad922da9feb
SHA1

13fcb505c67cecf5545615096dbf41c47923272b
SHA256

8ed0cd8f7ca50037871235bb0d78135ac5f9468cc84f95446a730b58ef8bd539
SHA512

69731a61ea62b07bd265c77e92d707bc090721c1a60cc2d038aa8ff589dc9bc6d9ae632ce7845f713dd099bf65d3ef87f0e24813171a2c4172b87c9392711ca1
SSDEEP

384:dKnObO6dTeXBmVsYFs67bIzWWB9B0HmD:dKn0axmFr7kz9B0Hc

Score

N/A

Malware Config

Signatures

Files

8ed0cd8f7ca50037871235bb0d78135ac5f9468cc84f95446a730b58ef8bd539
.dll windows x86

34dae07c2e2d734909f7c513e1da285e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mfc42

ord639
ord322
ord2721
ord860
ord800
ord540
ord825
ord2818
ord823
ord5710
ord537
ord503
ord5192
ord3170
ord775
ord317
ord635
ord858
ord941
ord535
ord2915
ord5572
ord5683
ord4129
ord1105

msvcrt

_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
??1type_info@@UAE@XZ
_stricmp
_CxxThrowException
_mbscmp
__CxxFrameHandler

kernel32

OpenProcess
GetCurrentDirectoryA
SetCurrentDirectoryA
GetStartupInfoA
CreateProcessA
CloseHandle
WaitForMultipleObjects
TerminateProcess
GetModuleFileNameA
VirtualQuery
ResumeThread
GetExitCodeProcess
Sleep
OutputDebugStringA
WaitForSingleObject
LocalFree

user32

GetActiveWindow
MessageBoxA
DialogBoxParamA
SetWindowTextA
RegisterHotKey
PostMessageA
UnregisterHotKey
GetDesktopWindow
GetWindow
GetWindowTextA
GetClassNameA
GetWindowThreadProcessId
EndDialog

comdlg32

GetSaveFileNameA

shell32

ShellExecuteA

oleaut32

VariantClear

wtsapi32

WTSSendMessageA

Exports

Exports

MdbMon_Start
Test

Sections

.text
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 880B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 432B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34dae07c2e2d734909f7c513e1da285e

Headers

File Characteristics

Imports

mfc42

msvcrt

kernel32

user32

comdlg32

shell32

oleaut32

wtsapi32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 6KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 880B

.rsrc Size: 4KB - Virtual size: 432B

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 6KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 880B

.rsrc
Size: 4KB - Virtual size: 432B

.reloc
Size: 4KB - Virtual size: 1KB