42f2de6562cb4e14efbc4b918e7d4b0b295135c4c51ea65307253fc8d3da75d7

Sharing

Copy URL Twitter E-mail

General

Target

42f2de6562cb4e14efbc4b918e7d4b0b295135c4c51ea65307253fc8d3da75d7
Size

376KB
MD5

54fd570848ff8feee3bbdd8714299fb8
SHA1

47982ddc746117eb9305435f803c587cc065ee79
SHA256

42f2de6562cb4e14efbc4b918e7d4b0b295135c4c51ea65307253fc8d3da75d7
SHA512

4b4c01e511621e3b153c016513f566728ce452449063ce0174524e6c29f8edc524cc96663b3c3e59deaae69ed779e5e453ac351070342b12cc70180110aa58f1
SSDEEP

3072:zLRl5NJCxCueoXBoj8fv3nJCyCwXEwK7eLmEPQrCBatYYT4NigKF:fD5NJCVJ4CvnJCyCwUwKaLm6P/vK

Score

N/A

Malware Config

Signatures

Files

42f2de6562cb4e14efbc4b918e7d4b0b295135c4c51ea65307253fc8d3da75d7
.dll windows x86

804c1299c207f1ae1da38ef3dade03a6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetModuleFileNameA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
lstrlenA
InterlockedDecrement
MultiByteToWideChar
GlobalReAlloc
CloseHandle
ReadFile
GetProcAddress
CreateFileA
WideCharToMultiByte
CreateFileW
GetVersionExA
IsBadReadPtr
IsBadWritePtr
LocalAlloc
FormatMessageA
FlushFileBuffers
GetFileSize
FreeLibrary
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetLocaleInfoW
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentDirectoryA
GlobalSize
SetFilePointer
InterlockedIncrement
Sleep
InterlockedExchange
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
LocalFree
RtlUnwind
RaiseException
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentThreadId
GetCommandLineA
HeapAlloc
GetProcessHeap
LCMapStringA
LCMapStringW
GetCPInfo
WriteFile
GetStdHandle
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetACP
GetOEMCP
HeapSize
ExitProcess
SetHandleCount
GetFileType
GetStartupInfoA

user32

MessageBoxA
SendMessageA
ReleaseDC
GetDC

gdi32

GetDeviceCaps

wininet

InternetOpenUrlW
InternetReadFile
InternetOpenW
InternetCloseHandle

ole32

CoCreateInstance
CLSIDFromProgID
OleRun
CoInitialize
CoUninitialize
CLSIDFromString

oleaut32

SysStringByteLen
SysAllocStringByteLen
SafeArrayCreate
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayRedim
VariantClear
SysStringLen
SysAllocString
SysFreeString
VariantInit
VariantChangeType
GetErrorInfo

Exports

Exports

GetFilterInfo
TX_Export
TX_Import

Sections

.text
Size: 272KB - Virtual size: 270KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

804c1299c207f1ae1da38ef3dade03a6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wininet

ole32

oleaut32

Exports

Exports

Sections

.text Size: 272KB - Virtual size: 270KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 16KB - Virtual size: 14KB

.reloc Size: 24KB - Virtual size: 20KB

.text
Size: 272KB - Virtual size: 270KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 16KB - Virtual size: 14KB

.reloc
Size: 24KB - Virtual size: 20KB