8898cc37dfec498974cbf9c1d34e76b432ca0a98f5e8c0563d077e29d18aa9b0

Sharing

Copy URL Twitter E-mail

General

Target

8898cc37dfec498974cbf9c1d34e76b432ca0a98f5e8c0563d077e29d18aa9b0
Size

288KB
MD5

70f051f6f3c96947cd4bf3a0623a7ddb
SHA1

86194901c66004e256fbeeccb8b204d3b51e993e
SHA256

8898cc37dfec498974cbf9c1d34e76b432ca0a98f5e8c0563d077e29d18aa9b0
SHA512

a86a17852aac73bd3ded065db2e88b037378b7b84b4b3c732429956f3dbc6a1b3e3068e15b25075cdbd67fba3d6d7600c654587599697d6ac66a93071d7b386f
SSDEEP

6144:yk7yVy9MJgskjL5sssnssssssssssssssssssssssssssnKb1dbL4/i+OH7k3RwZ:yk+sU4X6b8A3e9XX

Score

N/A

Malware Config

Signatures

Files

8898cc37dfec498974cbf9c1d34e76b432ca0a98f5e8c0563d077e29d18aa9b0
.dll windows x86

148e48a9b7b80cbf850df02dda90ae6a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeKillEvent
timeSetEvent

rpcrt4

UuidCreate
UuidToStringA
RpcStringFreeA

kernel32

GlobalAlloc
VirtualFreeEx
WriteProcessMemory
VirtualAllocEx
OpenProcess
GlobalFree
GetTickCount
LoadLibraryA
DeleteFileA
MultiByteToWideChar
GetModuleHandleA
GetFileAttributesW
CreateFileMappingW
CreateFileW
GetModuleFileNameW
CreateDirectoryA
GetTempPathA
CreateDirectoryW
GetTempPathW
LoadLibraryW
GetVersionExA
SetFileAttributesW
WriteFile
GetLastError
GetSystemInfo
GlobalLock
GlobalSize
GlobalUnlock
CreateFileMappingA
MapViewOfFile
GetFileSize
UnmapViewOfFile
GetModuleFileNameA
GetProcAddress
FreeLibrary
CreateMutexA
ReleaseMutex
WaitForSingleObject
CloseHandle
CreateFileA
DisableThreadLibraryCalls

user32

UpdateWindow
IsWindow
RegisterClassW
RegisterClassA
LoadIconA
RegisterWindowMessageA
GetFocus
SetFocus
SetCursor
ReleaseCapture
GetCapture
SetCapture
PostMessageA
IsIconic
GetUpdateRect
BeginPaint
EndPaint
ScreenToClient
ShowWindow
SetWindowLongA
InvalidateRgn
GetClientRect
SetWindowRgn
DispatchMessageA
TranslateMessage
GetDC
ReleaseDC
CreatePopupMenu
CreateWindowExA
SetForegroundWindow
TrackPopupMenu
DestroyMenu
DestroyWindow
GetMessageA
GetWindowThreadProcessId
SetWindowTextW
SetWindowTextA
InsertMenuW
InsertMenuA
wsprintfW
DefWindowProcW
GetClassNameA
CreateWindowExW
RegisterClassExA
IsWindowVisible
FlashWindowEx
IntersectRect
GetSystemMenu
GetMenuItemCount
DeleteMenu
GetDesktopWindow
PtInRect
SystemParametersInfoA
GetWindowRect
AdjustWindowRectEx
SendMessageA
GetWindowPlacement
PostQuitMessage
SetWindowPos
ClientToScreen
WindowFromPoint
GetWindowLongA
LoadCursorA
CreateCursor
GetSystemMetrics
SetRect
GetCursorPos
EnableWindow
SetTimer
DefWindowProcA
LoadImageA
RedrawWindow

gdi32

CreateDIBSection
CreateRectRgnIndirect
GetRegionData
ExtCreateRegion
OffsetRgn
CombineRgn
CreateSolidBrush
CreateDIBitmap
GetObjectA
GetDeviceCaps
GetRgnBox
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
CreateRectRgn
DeleteObject

advapi32

RegEnumValueA
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegCreateKeyExW
RegCloseKey

shell32

Shell_NotifyIconW
Shell_NotifyIconA
ExtractIconA
SHAppBarMessage

ole32

CoTaskMemAlloc
OleCreate
CLSIDFromString
RevokeDragDrop
CLSIDFromProgID
CoCreateInstance
OleSetContainedObject

oleaut32

SafeArrayGetDim
SysAllocStringLen
SysFreeString
SysStringLen
DispInvoke
VariantInit
VariantClear
SysReAllocString
SysAllocString
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElement
VariantChangeType
SysReAllocStringLen

msvcrt

memcpy
_except_handler3
?terminate@@YAXXZ
__dllonexit
_onexit
free
_initterm
malloc
__CxxFrameHandler
_purecall
memmove
??3@YAXPAX@Z
??2@YAPAXI@Z
swprintf
strncpy
_stricmp
_wtoi
_wcsicmp
atof
wcslen
wcsrchr
strrchr
_wtol
_wcsnicmp
wcscpy
wcscat
sprintf
memset
_ftol
wcsstr
wcsncpy
_vsnprintf
_itow
_adjust_fdiv
wcscmp

Exports

Exports

M

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

148e48a9b7b80cbf850df02dda90ae6a

Headers

File Characteristics

Imports

winmm

rpcrt4

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

msvcrt

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 4KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 4KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 4KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 4KB

.text
Size: 168KB - Virtual size: 168KB