55046ba360014ba51f85900c2bafc7a62eb04c3ecf31bec95b9b34145969a23b

General

Target

55046ba360014ba51f85900c2bafc7a62eb04c3ecf31bec95b9b34145969a23b
Size

120KB
MD5

6f2cd61f0526eebea9eb4096a41f246d
SHA1

825e10ee0fbfd44a77c58d64ae12f5db288c2f3e
SHA256

55046ba360014ba51f85900c2bafc7a62eb04c3ecf31bec95b9b34145969a23b
SHA512

208759763c31edbe9da7f2605478fac84cb7fc373a3bc9583c7f27293db2d298c6beba337b891a7bc8f7c0c9969fb0b1e5cbf8477fd7b4cdf65499022b597c16
SSDEEP

3072:LePJ3ifZsI9nhzI0VMrGXk5U7jLgDHb7L6:Cx3+RJVMDMfgDHG

Score

N/A

Malware Config

Signatures

Files

55046ba360014ba51f85900c2bafc7a62eb04c3ecf31bec95b9b34145969a23b
.dll windows x86

68a577429e6046568a58718b8a8e1a1b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
GetTickCount
GetProcAddress
LocalFree
InterlockedDecrement
MapViewOfFile
LoadLibraryA
ReleaseMutex
UnmapViewOfFile
GetLastError
CloseHandle
EnterCriticalSection
lstrlenA
GetModuleFileNameA
GetCommandLineA
WaitForSingleObject
LeaveCriticalSection
CopyFileA
ExitProcess
InterlockedIncrement
lstrlenW
CreateProcessA
InterlockedCompareExchange
GetModuleHandleA
CreateEventA
CreateDirectoryA
Sleep
SetLastError

ole32

OleCreate
CoInitialize
CreateBindCtx
CoUninitialize
CoCreateGuid
OleSetContainedObject

user32

GetMessageA
GetClassNameA
SetWindowLongA
PostMessageA
SendMessageA
FindWindowA
RegisterWindowMessageA
GetParent
DefWindowProcA
TranslateMessage
GetSystemMetrics
SetTimer
DispatchMessageA
KillTimer
DestroyWindow
CreateWindowExA
GetWindowLongA
PostQuitMessage

oleaut32

SysAllocString
SysFreeString
SysAllocStringLen

shlwapi

StrStrIW
UrlUnescapeW

advapi32

RegOpenKeyExA
RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegSetValueExA

Exports

Exports

CdCommonlog

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68a577429e6046568a58718b8a8e1a1b

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB