e4f1c17e690830a5e8c8c17abf4774942b4cc9ebaf691920b1ce7a97dd94b5a7

Sharing

Copy URL Twitter E-mail

General

Target

e4f1c17e690830a5e8c8c17abf4774942b4cc9ebaf691920b1ce7a97dd94b5a7
Size

216KB
MD5

6d1a3b92f2d0cedf997747f0a9cc7555
SHA1

80795aade848f99ad0c991a6ad3ca2f2193bf4d7
SHA256

e4f1c17e690830a5e8c8c17abf4774942b4cc9ebaf691920b1ce7a97dd94b5a7
SHA512

c424ae7ba36d731dec633aa339c4c1c16d8cfcf0ab911f3290896693503daee9df38473b2c3e3f7f84cd2369cdf28737eda4a12abdacae01f911e2bc0348d126
SSDEEP

3072:aSVz1OAdTcEsRDhyvR1PBci4ZFmLno6wKx0zN5uDHdEO/uaEo8HLRPHDKt/Mtxdm:tBjFYyp1PBOK/JxIU9EOE/8ZMtx2wc

Score

N/A

Malware Config

Signatures

Files

e4f1c17e690830a5e8c8c17abf4774942b4cc9ebaf691920b1ce7a97dd94b5a7
.dll windows x86

b02553a206e3e162e9a6b9acb883dcec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Write
ImageList_Destroy
ImageList_Create
ImageList_DrawEx
ImageList_Draw
ImageList_Add
ImageList_Remove

user32

EndPaint
GetClientRect
CheckMenuItem
SetWindowPos
CallWindowProcA
GetScrollPos
TrackPopupMenu
IsMenu
GetMenu
SetCursor
FillRect
HideCaret
BeginPaint
GetMenuItemInfoA
EnableMenuItem
GetClassLongA
DrawMenuBar
CreateMenu
CreateIcon
FindWindowA
GetSysColor
GetCursorPos
GetMenuStringA
EnumThreadWindows
GetPropA
GetForegroundWindow
GetKeyNameTextA
IsWindowEnabled
DefMDIChildProcA
DrawFrameControl
BeginDeferWindowPos
GetMenuState
GetDC
IsWindowVisible
CharLowerBuffA
GetKeyState
GetFocus
GetDesktopWindow
DrawIconEx
GetWindowTextA
GetParent
CreateWindowExA
GetDCEx
CreatePopupMenu
DefWindowProcA
MessageBoxA
DrawEdge
ClientToScreen
GetScrollInfo
FrameRect
GetSysColorBrush
DrawTextA
GetClipboardData
SetWindowTextA
GetCursor
GetScrollRange
GetLastActivePopup
GetClassInfoA
GetIconInfo
EqualRect
SetWindowLongA
RegisterClassA
GetDlgItem
EndDeferWindowPos
IsDialogMessageA

msvcrt

memmove
calloc
log
memcpy

kernel32

LocalReAlloc
SetThreadLocale
GlobalAlloc
GetTickCount
GetSystemDefaultLangID
GetLastError
FormatMessageA
LocalFree
HeapDestroy
GetCurrentThread
GetOEMCP
SetEvent
EnterCriticalSection
CompareStringA
GetStringTypeA
ExitThread
MoveFileExA
GetFileSize
lstrlenA
ResetEvent
GetVersion
GetStartupInfoA
VirtualAlloc
CloseHandle
CreateThread
lstrcmpiA
GetDiskFreeSpaceA
CreateFileA
GetProcAddress
HeapAlloc
FreeResource
FreeLibrary
LoadLibraryA
GlobalDeleteAtom
LoadLibraryExA
GetLocalTime
Sleep
GetEnvironmentStrings
GetUserDefaultLCID
SetEndOfFile
GetCPInfo
GetFullPathNameA
LockResource
DeleteFileA
MoveFileA
LoadResource
GlobalFindAtomA
CreateEventA
FindFirstFileA
lstrcpyA
GetModuleFileNameA
GetStdHandle
SetErrorMode
InitializeCriticalSection
GetProcessHeap
GetCurrentThreadId
GetCommandLineA
SetFilePointer
ReadFile
GetStringTypeW
LocalAlloc
DeleteCriticalSection
VirtualFree
FindClose
GetLocaleInfoA
lstrcpynA
GetCurrentProcessId
GetModuleHandleA

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 4KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 368B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b02553a206e3e162e9a6b9acb883dcec

Headers

File Characteristics

Imports

comctl32

user32

msvcrt

kernel32

Sections

.text Size: 40KB - Virtual size: 40KB

.bss Size: 4KB - Virtual size: 127KB

.tls Size: 166KB - Virtual size: 165KB

.edata Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 368B

.text
Size: 40KB - Virtual size: 40KB

.bss
Size: 4KB - Virtual size: 127KB

.tls
Size: 166KB - Virtual size: 165KB

.edata
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 368B