dc594784f34df97218cc00e59d2b43305eb2fefcfefd9663604c70bd3f0708bc

Sharing

Copy URL Twitter E-mail

General

Target

dc594784f34df97218cc00e59d2b43305eb2fefcfefd9663604c70bd3f0708bc
Size

520KB
MD5

665ec0d9fc66808a0551b2471ab6d635
SHA1

a86e8b935e2d596fb6206ed1b0408e77e0bd3f0d
SHA256

dc594784f34df97218cc00e59d2b43305eb2fefcfefd9663604c70bd3f0708bc
SHA512

8f087c13ba046e2dfe1856db376d221f33f2e4015727eb3b8145b71b218b667b9d32f65cdbe7b63d840c2f1be4307a1d01ae24b2d491b3eb9ce8c10f4a8dc09c
SSDEEP

12288:gGFKPjvwMJ+ugqgHT36dDeJtdDX/Lrqg4R50LErL5Q6aEgux3:tKrFJ+ugqAqJa3nqYYT

Score

N/A

Malware Config

Signatures

Files

dc594784f34df97218cc00e59d2b43305eb2fefcfefd9663604c70bd3f0708bc
.dll windows x86

f0a9c96ec3624d0749735f901e505e00

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

Rectangle
SetTextAlign
GetClipRgn
TextOutA
GetClipBox
GetBitmapDimensionEx
FrameRgn
CreateRectRgnIndirect
ColorCorrectPalette
SetWindowOrgEx
ChoosePixelFormat

advapi32

RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegSetValueExA

oleaut32

VariantInit
VariantClear
VariantChangeType
VarUI4FromStr
UnRegisterTypeLi
SysStringLen
SysStringByteLen
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
SysAllocString
SafeArrayUnaccessData
SafeArrayGetVartype
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
RegisterTypeLi
OleCreatePropertyFrame
LoadTypeLi
LoadRegTypeLi

kernel32

lstrlenA
WriteFile
WideCharToMultiByte
VirtualFree
VirtualAlloc
TerminateProcess
Sleep
SetLastError
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LeaveCriticalSection
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStringTypeA
GetSystemInfo
GetTickCount
GetVersionExA
GlobalAlloc
GlobalLock
GlobalUnlock
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement

user32

BeginPaint
EndPaint
GetClassInfoExA
GetClientRect
GetKeyState
InvalidateRect
IsWindow
RegisterClassExA
SetWindowLongA
ShowWindow

ole32

CoCreateInstance
CoCreateInstanceEx
CoImpersonateClient
CreateDataAdviseHolder
CreateOleAdviseHolder
OleLoadFromStream
OleRegEnumVerbs
OleRegGetUserType
OleSaveToStream

Exports

Exports

GetBuiltins
GetGlobals
List_Append
State_New

Sections

.text
Size: 138KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 219KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0a9c96ec3624d0749735f901e505e00

Headers

File Characteristics

Imports

gdi32

advapi32

oleaut32

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 138KB - Virtual size: 138KB

.rdata Size: 55KB - Virtual size: 54KB

.data Size: 95KB - Virtual size: 95KB

.rsrc Size: 219KB - Virtual size: 218KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 138KB - Virtual size: 138KB

.rdata
Size: 55KB - Virtual size: 54KB

.data
Size: 95KB - Virtual size: 95KB

.rsrc
Size: 219KB - Virtual size: 218KB

.reloc
Size: 11KB - Virtual size: 10KB