ef2ed93f5f8798bf618d251606a10763366cecc8cf9f605e00dec11b696ae797

Sharing

Copy URL Twitter E-mail

General

Target

ef2ed93f5f8798bf618d251606a10763366cecc8cf9f605e00dec11b696ae797
Size

67KB
MD5

6102b2e2bbd960fca66a907c25af2d84
SHA1

09e8be4c2ceda4e7dd0cea5ab563f9b79463df12
SHA256

ef2ed93f5f8798bf618d251606a10763366cecc8cf9f605e00dec11b696ae797
SHA512

0c0dac50a0bc0e82ebaac9dbe1ad8c47c9a26bb9b29f770fb4835a25103661a2e1d5e717d88d025fec264f7e894637209a87b15b337f454de0d802d68a805d29
SSDEEP

1536:VU44wUtQ02JwA6jcV4lI52L+ATR30BDZa2q3b3x:VdrUtQorI52rufS39

Score

N/A

Malware Config

Signatures

Files

ef2ed93f5f8798bf618d251606a10763366cecc8cf9f605e00dec11b696ae797
.dll windows x86

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ChangeMenuA
SetFocus
ShowCursor
ShowWindow
DrawTextA
MessageBeep
LoadIconA
GetMenu
CharUpperA
CharToOemBuffA
MessageBoxA

kernel32

GetCommandLineA
ExitProcess
CloseHandle
GetStartupInfoA
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
UnmapViewOfFile
GetModuleHandleA

wininet

InternetCanonicalizeUrlA
InternetSetOptionExA
InternetSetStatusCallbackA
HttpEndRequestA

advapi32

LsaGetUserName
RegEnumKeyA
LsaGetSystemAccessAccount
LsaGetRemoteUserName
LsaFreeMemory
LsaEnumerateTrustedDomainsEx
LsaEnumeratePrivileges
LsaEnumerateAccountsWithUserRight
LsaEnumerateAccountRights
LsaClose
LsaCreateAccount
LsaCreateTrustedDomainEx
LsaDeleteTrustedDomain

ole32

OleUninitialize
OleInitialize
DoDragDrop
CreateILockBytesOnHGlobal
CoUninitialize
CoCreateInstance
CoGetClassObject
CoGetMalloc
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateBindCtx

msvbvm60

__vbaFileClose
__vbaDateStr

dsound

DirectSoundCreate
DirectSoundCaptureEnumerateW
DirectSoundEnumerateA

msvfw32

ICImageDecompress
ord2
DrawDibRealize

Sections

.text
Size: 27KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e422c76889779ce68a20f1ab56a9d9fb

Headers

File Characteristics

Imports

user32

kernel32

wininet

advapi32

ole32

msvbvm60

dsound

msvfw32

Sections

.text Size: 27KB - Virtual size: 28KB

.rdata Size: 15KB - Virtual size: 16KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 27KB - Virtual size: 28KB

.rdata
Size: 15KB - Virtual size: 16KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB