b15999164d1a3869e8861856c91ee37a1f6874a4eabc4a55f892f1d3a8755b6f

Sharing

Copy URL Twitter E-mail

General

Target

b15999164d1a3869e8861856c91ee37a1f6874a4eabc4a55f892f1d3a8755b6f
Size

428KB
MD5

64115337b02055e1d1d58bd6bb2587e0
SHA1

bb37c5a2badf71b883f31567a3e4fe5182438762
SHA256

b15999164d1a3869e8861856c91ee37a1f6874a4eabc4a55f892f1d3a8755b6f
SHA512

f3f8ae61b4befbad2564634120ff15c251b9cdd8f8a34081a02157c0904c763103e0a2b2279d7298602df9e96868cd5fd9f9a7149d0f4cefb0cc366f63865972
SSDEEP

6144:KDTgu8XOh7QVRHac+JEd+KcFyzcExfcUzvJR2dhVfZi/xGu8XPZ:YguEO01qEd+7yzcExUndfRi/

Score

N/A

Malware Config

Signatures

Files

b15999164d1a3869e8861856c91ee37a1f6874a4eabc4a55f892f1d3a8755b6f
.dll windows x86

8095f5af6287c0f049dab731f2d7e427

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SafeArrayPtrOfIndex
SafeArrayCreate
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
LPSAFEARRAY_UserFree
SafeArrayPutElement
VariantCopyInd
VariantClear
VariantChangeType
SysReAllocStringLen
SysFreeString
SafeArrayRedim

user32

LoadStringA
MessageBoxA
CharNextA
EndMenu
EnumThreadWindows
GetKeyboardType

kernel32

lstrlenA
lstrcpynA
WriteFile
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
SystemTimeToFileTime
SetThreadLocale
CloseHandle
CompareStringA
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
FindClose
FindFirstFileA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLangID
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFileTimeToFileTime
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadFile
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointer
SetFileTime
SetHandleCount
SetLastError

wsock32

ntohl
htons
htonl
ntohs

setupapi

SetupCloseInfFile
SetupDiDeleteDeviceInfo
CM_Get_Res_Des_Data_Size
SetupGetFileQueueCount

advapi32

RegQueryValueExA
RegCloseKey
PrivilegeCheck
LsaLookupPrivilegeDisplayName

Exports

Exports

AnyFile
ExecCodeModuleEx
Module_GetDict
WriteUnraisable
set_PLTE

Sections

.text
Size: 81KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 245KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8095f5af6287c0f049dab731f2d7e427

Headers

File Characteristics

Imports

oleaut32

user32

kernel32

wsock32

setupapi

advapi32

Exports

Exports

Sections

.text Size: 81KB - Virtual size: 80KB

.rdata Size: 245KB - Virtual size: 245KB

.data Size: 67KB - Virtual size: 67KB

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 81KB - Virtual size: 80KB

.rdata
Size: 245KB - Virtual size: 245KB

.data
Size: 67KB - Virtual size: 67KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 4KB - Virtual size: 3KB