7987cce246c418057b4073f3cadc66f4a1f7156f9fbedeeada78120978815942

Sharing

Copy URL Twitter E-mail

General

Target

7987cce246c418057b4073f3cadc66f4a1f7156f9fbedeeada78120978815942
Size

108KB
MD5

4903e540a37f7bffbb160b33c755519c
SHA1

22b5cc5d7836f1b10a759e53bedb18bae46b7260
SHA256

7987cce246c418057b4073f3cadc66f4a1f7156f9fbedeeada78120978815942
SHA512

f01afe9c3e20b3b5c41817f8b241aa091d24223c173851be674212f2b47cd6fa1dabe553b5fb8ca00a41e0533396d69d1c0c84351708b8cfd343dec288a773fe
SSDEEP

1536:G/S2BQrIaeOWntUY377D2Wd3zB8Hrkxt83J7Wdhwd0y2tAYoAdw1zoP:wS40ITt37rl8VZLYoAOoP

Score

N/A

Malware Config

Signatures

Files

7987cce246c418057b4073f3cadc66f4a1f7156f9fbedeeada78120978815942
.dll windows x86

90bcc6836d49ed720e611b1a35ca2fb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetProcAddress
lstrcmpW
lstrlenW
Sleep
GetStringTypeA
LCMapStringA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
HeapAlloc
InterlockedExchange
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
GetCommandLineA
TlsSetValue
TlsGetValue
GetUserDefaultLCID
GetCurrentProcess
LCMapStringW
CompareStringW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
VirtualProtect
WriteFile
ExitProcess
GetVersion
RtlUnwind
GetStringTypeW

user32

ReleaseDC
GetWindowDC
GetWindowRect
GetPropW
SetPropW
GetClassNameW
SendMessageW
GetWindowLongW
CallNextHookEx
CallWindowProcW
GetWindowTextLengthW
HideCaret
MapWindowPoints
ShowCaret
GetWindowTextW
DrawTextW
IntersectRect
DrawFocusRect
ScreenToClient
GetDC
GetSystemMetrics
DefWindowProcW
IsIconic
IsWindowEnabled
GetWindow
GetParent
InflateRect
OffsetRect

advapi32

OpenSCManagerW
StartServiceW
CloseServiceHandle
OpenServiceW

gdi32

PatBlt
ExtTextOutW
SelectObject
SetTextColor
SetBkColor
GetTextExtentPointW

ole32

CoCreateInstance

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90bcc6836d49ed720e611b1a35ca2fb9

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

Sections

.text Size: 80KB - Virtual size: 76KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 44KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 80KB - Virtual size: 76KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 44KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB