9da6bfae239a2321f9d654f9aa4bbfe13cf4bbac3c84824e34a8debbfa859df7

Sharing

Copy URL Twitter E-mail

General

Target

9da6bfae239a2321f9d654f9aa4bbfe13cf4bbac3c84824e34a8debbfa859df7
Size

3.1MB
MD5

7a709ab35e42eb7047fec032ca2f112f
SHA1

aed6c5062ff51a27ccd78d290106e9885aebc671
SHA256

9da6bfae239a2321f9d654f9aa4bbfe13cf4bbac3c84824e34a8debbfa859df7
SHA512

f2aeb980a6100ae64fae831ebd3ffdef0bc64f01877cb5730fe59de5c2824f62f22d95c84376c1c87a158d5e3b5444ad15871791a727ab0310f4b6b0cd2e82a8
SSDEEP

49152:Cgq8WBYZWTjNe7y6oz8ZybKumyQAvEwuXSa2nm/:Cgq8WRNeLoKybHmyQAvEwuCa2n

Score

N/A

Malware Config

Signatures

Files

9da6bfae239a2321f9d654f9aa4bbfe13cf4bbac3c84824e34a8debbfa859df7
.dll windows x86

789b03b878d34b2e0f2a004846746cb4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetPropA
SendMessageA
GetDC
UpdateLayeredWindow
ReleaseDC
CreateWindowExA
EnumChildWindows
GetAncestor
EnumWindows
GetClassNameA
GetWindowLongA
GetWindowRect
IsWindow
CallWindowProcA
TrackMouseEvent
ShowWindow
MessageBoxA
wsprintfA
GetCursorPos
GetSystemMetrics
CloseClipboard
GetClipboardData
GetPropA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
OpenClipboard

gdi32

CreateDIBSection
SelectObject
DeleteObject
DeleteDC
CreateCompatibleDC

gdiplus

GdipDisposeImage
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdiplusStartup
GdipSetSolidFillColor
GdipCreateSolidFill
GdipDeleteBrush
GdipGetRegionBounds
GdipDeletePen
GdipLoadImageFromStream
GdipDrawRectangleI
GdipLoadImageFromFile
GdipGetImageWidth
GdipGetImageHeight
GdipSetSmoothingMode
GdipSetTextRenderingHint
GdipCreateFromHDC

kernel32

LCMapStringW
IsBadCodePtr
SetUnhandledExceptionFilter
SetFilePointer
GetStringTypeW
GetStringTypeA
InterlockedIncrement
InterlockedDecrement
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
SetStdHandle
IsBadWritePtr
RaiseException
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
GetLastError
TlsGetValue
SetLastError
lstrlenW
FlushFileBuffers
MapViewOfFile
GetModuleHandleA
RtlMoveMemory
LocalFree
GlobalAlloc
GlobalLock
GlobalUnlock
LoadLibraryW
GetProcAddress
MultiByteToWideChar
LocalSize
GlobalFree
RtlFillMemory
LocalAlloc
WideCharToMultiByte
VirtualProtectEx
VirtualAlloc
VirtualFree
GetProcessHeap
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
GetModuleFileNameA
CloseHandle
WriteFile
CreateFileA
ReadFile
GetTickCount
GetTempPathA
WaitForSingleObject
CreateProcessA
GetStartupInfoA
Sleep
GetLocalTime
GetCurrentDirectoryA
FreeLibrary
LoadLibraryA
LCMapStringA
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetCurrentProcess
TerminateProcess
CreateFileMappingA
GetFileSize
RtlUnwind
GetVersion
GetCommandLineA

ole32

CreateStreamOnHGlobal
CLSIDFromString

shell32

SHAppBarMessage
ShellExecuteA

imm32

ImmGetContext
ImmAssociateContext
ImmGetCompositionStringW
ImmReleaseContext
ImmSetCompositionWindow

shlwapi

PathFileExistsA

winmm

PlaySoundA

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 300KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

789b03b878d34b2e0f2a004846746cb4

Headers

File Characteristics

Imports

user32

gdi32

gdiplus

kernel32

ole32

shell32

imm32

shlwapi

winmm

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 300KB - Virtual size: 351KB

.rsrc Size: 76KB - Virtual size: 75KB

.data Size: 72KB - Virtual size: 69KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 300KB - Virtual size: 351KB

.rsrc
Size: 76KB - Virtual size: 75KB

.data
Size: 72KB - Virtual size: 69KB