8170df0af76dc127d4f9a6c1998c9efca7830d2734a4e5820a4b7b369259d0b4

General

Target

8170df0af76dc127d4f9a6c1998c9efca7830d2734a4e5820a4b7b369259d0b4
Size

136KB
MD5

4626b8c5e6f5d9046176d8e14a724482
SHA1

8ffa0ac290fc87137e24f5da4bb2cf6a15d07968
SHA256

8170df0af76dc127d4f9a6c1998c9efca7830d2734a4e5820a4b7b369259d0b4
SHA512

a91fa5c61c9bd8d16d9c5df5dc34961af3c5f0ff2c84213ed8d3ffeceb2da5d622aa8319882e5e8e1803f1b175a469fb4cf0e5398dbb75655d581eaab8152436
SSDEEP

3072:p1vvD9qW6PoADSTx99aX/g4slW7oY/LghKU9z7s:ppvl6QGPghlW4XN7s

Score

N/A

Malware Config

Signatures

Files

8170df0af76dc127d4f9a6c1998c9efca7830d2734a4e5820a4b7b369259d0b4
.dll windows x86

529b9fe2f2f2c6f5f7b7103579aceea5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
LeaveCriticalSection
Sleep
WaitForSingleObject
CreateDirectoryA
CreateProcessA
GetProcAddress
lstrlenA
GetLastError
InterlockedDecrement
SetLastError
GetModuleHandleA
InterlockedIncrement
CloseHandle
ExitProcess
GetModuleFileNameA
OpenEventA
InterlockedCompareExchange
CopyFileA
UnmapViewOfFile
MapViewOfFile
GetTickCount
lstrlenW
GetCommandLineA
CreateEventA
LoadLibraryA
EnterCriticalSection
ReleaseMutex

ole32

CoUninitialize
OleSetContainedObject
CoInitialize
CoCreateGuid
CreateBindCtx
OleCreate

user32

FindWindowA
DefWindowProcA
CreateWindowExA
SetTimer
TranslateMessage
KillTimer
GetSystemMetrics
SetWindowLongA
DestroyWindow
GetClassNameA
GetParent
GetWindowLongA
PostQuitMessage
SendMessageA
PostMessageA
RegisterWindowMessageA
DispatchMessageA
GetMessageA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

shlwapi

StrStrIW
UrlUnescapeW

advapi32

RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCloseKey

Exports

Exports

DevCommsdlg

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

529b9fe2f2f2c6f5f7b7103579aceea5

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB