781c84a19886041fa1d14985cc67992258d1f3afbc9d61eba6d6899b0d7ba9a7

Sharing

Copy URL Twitter E-mail

General

Target

781c84a19886041fa1d14985cc67992258d1f3afbc9d61eba6d6899b0d7ba9a7
Size

525KB
MD5

67d99b3f7ebf43fbd2f8546dbff58519
SHA1

64ffcf48f583db24be04ef6a30c06a9fe084065e
SHA256

781c84a19886041fa1d14985cc67992258d1f3afbc9d61eba6d6899b0d7ba9a7
SHA512

d36a10fb60c1028a5901728086c2d0c7833f1099ed6c8ef546b778ab9279e68aaf922578d43542fbeb3ed99d5af5029dd2a26bdca647c0153ccfa49aadca2ca4
SSDEEP

12288:HcG8RGtga8WmwFcXQzE2WTeOXl1fGgdaeryJ0w+n2:Hz8Ryga82o26XV1ugdl+J0w+n2

Score

N/A

Malware Config

Signatures

Files

781c84a19886041fa1d14985cc67992258d1f3afbc9d61eba6d6899b0d7ba9a7
.dll windows x86

0e1483425951021ae6596f0385940ad7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

RestoreDC
SaveDC
SetTextAlign
Rectangle
SetWindowOrgEx
StretchBlt
TextOutA
GetDeviceCaps
GdiPlayPageEMF
DeleteMetaFile
CreateRectRgnIndirect
CreateMetaFileA
CreateCompatibleDC
SetWindowExtEx
CloseMetaFile

user32

GetFocus
UnionRect
SwitchToThisWindow
ShowWindow
SetWindowRgn
SetWindowPos
SetWindowLongA
SetFocus
ReleaseDC
RegisterClassExA
PtInRect
OffsetRect
IsWindow
IsGUIThread
IsChild
InvalidateRect
GetWindowLongA
GetParent
BeginPaint
CharNextA
CreateWindowExA
DrawIcon
EndPaint
GetClassInfoExA
GetClientRect
GetKeyState

oleaut32

SysAllocStringByteLen
VariantInit
VariantClear
VariantChangeType
VarUI4FromStr
UnRegisterTypeLi
SysStringLen
SysStringByteLen
SysFreeString
SysAllocStringLen
LoadRegTypeLi
SysAllocString
SafeArrayUnaccessData
SafeArrayGetVartype
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
RegisterTypeLi
OleCreatePropertyFrame
LoadTypeLi

kernel32

GlobalAlloc
lstrlenW
lstrlenA
lstrcmpiA
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GlobalLock
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GetCurrentProcessId

ole32

OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleSaveToStream
WriteClassStm
OleLoadFromStream
CreateOleAdviseHolder
CreateDataAdviseHolder
CoTaskMemAlloc
CoImpersonateClient
CoCreateInstanceEx
CoCreateInstance
OleNoteObjectVisible

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
LsaEnumeratePrivilegesOfAccount

Exports

Exports

Clear
GetIndices
InPlaceTrueDivide
Inittab
Long_FromDouble
_Check
_Fast
destroy_struct_2
write_chunk

Sections

.text
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 159KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e1483425951021ae6596f0385940ad7

Headers

File Characteristics

Imports

gdi32

user32

oleaut32

kernel32

ole32

advapi32

Exports

Exports

Sections

.text Size: 98KB - Virtual size: 97KB

.rdata Size: 70KB - Virtual size: 69KB

.data Size: 188KB - Virtual size: 189KB

.rsrc Size: 159KB - Virtual size: 158KB

.reloc Size: 9KB - Virtual size: 8KB

.text
Size: 98KB - Virtual size: 97KB

.rdata
Size: 70KB - Virtual size: 69KB

.data
Size: 188KB - Virtual size: 189KB

.rsrc
Size: 159KB - Virtual size: 158KB

.reloc
Size: 9KB - Virtual size: 8KB