7be2f252d6130cec31e1ac8ec172395b2c4ac57d3d6b1e93ebd18a80de812928

Sharing

Copy URL Twitter E-mail

General

Target

7be2f252d6130cec31e1ac8ec172395b2c4ac57d3d6b1e93ebd18a80de812928
Size

62KB
MD5

743dae2024894bc41732390e2618845b
SHA1

8e5c61ade0d1359d85a81b8f0e3d29243361d8f2
SHA256

7be2f252d6130cec31e1ac8ec172395b2c4ac57d3d6b1e93ebd18a80de812928
SHA512

4901631f623a5e6186753e6e92b6097f1f6bc712c51b8c32c62aac5993636f9e6f1c86ac14466aadc5ca1b1627e70eef2148af866f3f74487537eec37eed660c
SSDEEP

1536:MfowDJMVXDXjnjVGMCaZHVEqLko/Q9zmHfjlHy9jqK7d:Mf7DJMdX7Bt3VEIko/Q96HpHBK

Score

N/A

Malware Config

Signatures

Files

7be2f252d6130cec31e1ac8ec172395b2c4ac57d3d6b1e93ebd18a80de812928
.dll windows x86

cc2faca89ccb6645b10ba30143ca266b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
FindNextFileW
lstrcpynW
WaitForMultipleObjects
VirtualProtect
LocalFileTimeToFileTime
ExitProcess
SetFileTime
LockResource
IsBadWritePtr
SetCurrentDirectoryW
VirtualQueryEx
GetDriveTypeA
GetLongPathNameA
SetLastError
TerminateProcess
GetFileSize
GetShortPathNameA
GlobalFree
GetACP
ResumeThread
GetCurrentDirectoryA
UnmapViewOfFile
MoveFileExW
FileTimeToDosDateTime
FindFirstFileW
CloseHandle
EnterCriticalSection
MapViewOfFileEx
TerminateThread
GetModuleFileNameA
lstrlenW
CreateFileMappingW
CreateMutexA
GetTempFileNameW
GetComputerNameW
GetModuleHandleA
LocalUnlock
GlobalDeleteAtom
CreateProcessA
DosDateTimeToFileTime
TlsSetValue

user32

AnimateWindow
MessageBeep
ShowCaret
DefWindowProcW
CharUpperBuffA
AppendMenuA
GetWindowTextLengthW
LoadAcceleratorsA
SetParent
CheckDlgButton
FindWindowA
SetClassLongA
RedrawWindow
DrawTextW
GetClassInfoW
InsertMenuA
IsClipboardFormatAvailable
GetDlgItemInt
MessageBoxA
TranslateAcceleratorA
SetWindowLongW
SystemParametersInfoA
GetScrollPos
DrawFrameControl
DrawIcon
EnumChildWindows
DefWindowProcA
ModifyMenuA
SetForegroundWindow
SetCursorPos
EndPaint
DeleteMenu
SetCaretPos
OffsetRect
DestroyIcon

gdi32

ExtCreatePen
SelectObject
StartDocA
SaveDC
CreateSolidBrush
MoveToEx
GetStockObject
CreateDCA
GetBkColor
CreatePen
AbortDoc
GetTextExtentPoint32W

appmdctl

_LCosh
_LExp
_Stof
_Cosh
_Toupper
_LInf
_Stod
_LDtest
_FDnorm
_Dtest
_LSnan

advapi32

OpenProcessToken
RegSetValueExA
RegDeleteKeyA
RegOpenKeyA

version

GetFileVersionInfoA

comctl32

ImageList_Draw
ImageList_GetIconSize
ImageList_Destroy

shell32

DragQueryPoint
ExtractAssociatedIconA

winspool

OpenPrinterA

Exports

Exports

CreateProcessNotify
DllClientCleanup
ati2imon
DllClientStartup
BuildADsPathFromParent
GetDisplayName
FindSearchTableIndex

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc2faca89ccb6645b10ba30143ca266b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

appmdctl

advapi32

version

comctl32

shell32

winspool

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB