ddd28cc17b4791763234a8a41479bf5a911af2d38b1cb75ee7d15ddaf4fdb4f1

Sharing

Copy URL

Twitter E-mail

General

Target

ddd28cc17b4791763234a8a41479bf5a911af2d38b1cb75ee7d15ddaf4fdb4f1
Size

264KB
MD5

6d09e8757c9cb452a3cb8e5b7a0eda56
SHA1

20a048c48bcd25346684f117f798c7da61361a2f
SHA256

ddd28cc17b4791763234a8a41479bf5a911af2d38b1cb75ee7d15ddaf4fdb4f1
SHA512

3af2a0e4e1c152dfb85372a02a093d761c33214eed2e9781723545a46a4458271a4608ec5e22c491c610d7d491bda2c0a1264485c941d0fe1c8c95eab20e7cbf
SSDEEP

6144:FAi9q9dRSX25lAhlljGBYtQKUYkvaW1FMygapJC28WK:7Gdj5aDKBRikvB1FFbJC2V

Score

N/A

Malware Config

Signatures

Files

ddd28cc17b4791763234a8a41479bf5a911af2d38b1cb75ee7d15ddaf4fdb4f1
.dll windows x86

e1e42e3767d704d87cad94a2defe7014

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

StgOpenStorage
StgCreateDocfileOnILockBytes
WriteClassStm
CoGetObjectContext
GetHGlobalFromStream
MkParseDisplayName
OleCreateStaticFromData

shell32

SHGetSpecialFolderLocation
SHFileOperationA

oleaut32

GetErrorInfo
SafeArrayGetUBound
OleLoadPicture
RegisterTypeLib
SysStringLen
SafeArrayUnaccessData
SafeArrayCreate
VariantCopyInd
SysAllocStringLen
VariantChangeType

kernel32

GetStdHandle
ExitThread
LoadResource
GlobalFindAtomA
IsBadReadPtr
GetACP
GetLocaleInfoA
ExitProcess
GetVersionExA
GetStringTypeW
LockResource
GetVersion
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetUserDefaultLCID
LoadLibraryExA
GetLocalTime
HeapAlloc
VirtualAllocEx
InitializeCriticalSection
GetTickCount
GetStringTypeA
GetModuleFileNameA
GetThreadLocale
LoadLibraryA
GetCommandLineW
GetProcessHeap
VirtualAlloc
GetProcAddress
GetLastError
GetSystemDefaultLangID
GetOEMCP
GetModuleHandleA
HeapFree
GetStartupInfoA
RaiseException

user32

RegisterClipboardFormatA

Sections

CODE
Size: 224KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 166B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cdata
Size: 12KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.adata
Size: 4KB - Virtual size: 617B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 836B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1e42e3767d704d87cad94a2defe7014

Headers

File Characteristics

Imports

ole32

shell32

oleaut32

kernel32

user32

Sections

CODE Size: 224KB - Virtual size: 223KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

DATA Size: 4KB - Virtual size: 166B

.cdata Size: 12KB - Virtual size: 109KB

.adata Size: 4KB - Virtual size: 617B

.rsrc Size: 4KB - Virtual size: 836B

.reloc Size: 4KB - Virtual size: 1KB

CODE
Size: 224KB - Virtual size: 223KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

DATA
Size: 4KB - Virtual size: 166B

.cdata
Size: 12KB - Virtual size: 109KB

.adata
Size: 4KB - Virtual size: 617B

.rsrc
Size: 4KB - Virtual size: 836B

.reloc
Size: 4KB - Virtual size: 1KB