decd9eb5b1079220a28f419b11bcbac84c747ce3802b3b2770de7ee16dfaccd6

Sharing

Copy URL

Twitter E-mail

General

Target

decd9eb5b1079220a28f419b11bcbac84c747ce3802b3b2770de7ee16dfaccd6
Size

4.3MB
MD5

4716dd4c0019436c5ba986da9a2d2fff
SHA1

63792ed7f2da3941e92c7b1b75d5531525446d0e
SHA256

decd9eb5b1079220a28f419b11bcbac84c747ce3802b3b2770de7ee16dfaccd6
SHA512

f860f6b34d036fe5c72b3b2ed443b9f190c0e814bedf0b3ee6f1c999255dbe7cf1db723350ca7524d5dcc11ad2785a32965b3d4e758b43ca2f91e59712fdd88b
SSDEEP

98304:IhFp+I8yweAKtZhyuD1Zf75rg3hDH/CmAt0xLQubZ7gG8c:IhFj8wAKHhyuD1ZfK3pdAt0RQ4yc

Score

N/A

Malware Config

Signatures

Files

decd9eb5b1079220a28f419b11bcbac84c747ce3802b3b2770de7ee16dfaccd6
.dll windows x86

a7a595948c4f3851f8cc1081b8fa6e03

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

DrawDibDraw

avifil32

AVIStreamInfoA

rasapi32

RasHangUpA

iphlpapi

GetAdaptersInfo

winmm

waveOutRestart

ws2_32

ioctlsocket

kernel32

SetFilePointer

user32

ScrollWindowEx

gdi32

LPtoDP

winspool.drv

OpenPrinterA

comdlg32

GetFileTitleA

advapi32

RegCloseKey

shell32

ShellExecuteA

ole32

CoTaskMemAlloc

oleaut32

VariantCopy

comctl32

ImageList_GetImageCount

wininet

InternetReadFile

msvcrt

strncpy

psapi

GetMappedFileNameW

Exports

Exports

AppInfo
End
Event
Info
MQ_End
MQ_Event
MQ_Info
MQ_Message
MQ_Set
Set
_eventDisable
_eventEnable
_eventExit
_eventStartup
_eventUninstall
_eventheavyload
_eventload
_menuA
_��ӳ��
��_��_��

Sections

.text
Size: 1.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s8ef4
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.s8ef4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7a595948c4f3851f8cc1081b8fa6e03

Headers

File Characteristics

Imports

msvfw32

avifil32

rasapi32

iphlpapi

winmm

ws2_32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

wininet

msvcrt

psapi

Exports

Exports

Sections

.text Size: 1.3MB - Virtual size: 3.3MB

.s8ef4 Size: 3.0MB - Virtual size: 3.0MB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 4KB

.s8ef4 Size: 4KB - Virtual size: 4KB

.text
Size: 1.3MB - Virtual size: 3.3MB

.s8ef4
Size: 3.0MB - Virtual size: 3.0MB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 4KB

.s8ef4
Size: 4KB - Virtual size: 4KB