c1577286e17f96052037db37ad0d433c948e71c4aecc7961aeea6d1f3e8b1ed8

Sharing

Copy URL Twitter E-mail

General

Target

c1577286e17f96052037db37ad0d433c948e71c4aecc7961aeea6d1f3e8b1ed8
Size

84KB
MD5

1f68d8c8bc604b44645e426c67f4d732
SHA1

5a41de24e09e1220f6400b918df00fee6f5a3ad6
SHA256

c1577286e17f96052037db37ad0d433c948e71c4aecc7961aeea6d1f3e8b1ed8
SHA512

f697be05855259af7b12dcd6ad22c061372e54ad0944d5e19ed5592955b45ac25bcd1bdbc530e215e3c8ef554ae78a622fb2db5d722faa8dce14f87f6d303665
SSDEEP

1536:L8CNs21XjIE/DNT54HPcFmfiKsv154tG609yBkbwb:L1UE/5T54HYfKsvX4tA9Mk8

Score

N/A

Malware Config

Signatures

Files

c1577286e17f96052037db37ad0d433c948e71c4aecc7961aeea6d1f3e8b1ed8
.dll windows x86

f84a0f7f51eb49c08ebd9b6a4d2b328d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleA
GetNumberOfConsoleInputEvents
VirtualQueryEx
GetComputerNameExW
DeviceIoControl
CreateEventW
GetCurrentProcess
OpenFileMappingW
GetTapeParameters
SetLocalTime
GetCommandLineA
GetStringTypeA
LCMapStringA
GetThreadPriority
DeleteTimerQueueEx
GlobalFindAtomW
GlobalDeleteAtom
ActivateActCtx
HeapUnlock
SetFilePointer
AssignProcessToJobObject
GlobalGetAtomNameA
GetConsoleScreenBufferInfo
CreateTimerQueue
SetInformationJobObject
SetVolumeLabelA
SetProcessShutdownParameters
FindFirstVolumeW
GetFullPathNameA
WTSGetActiveConsoleSessionId
IsBadStringPtrW
FindNextChangeNotification
SetConsoleCursorPosition
FindFirstFileExW
SetConsoleWindowInfo
GetVolumePathNamesForVolumeNameW
FindActCtxSectionGuid
SleepEx
GetCurrentDirectoryW
VerifyVersionInfoA
GetDiskFreeSpaceExW
GetSystemTimeAsFileTime
HeapAlloc
CreateDirectoryA
VirtualQuery
CloseHandle
CreateFileMappingA
LocalFree
CopyFileA
SetEvent
GetSystemDirectoryA
WriteFile
UnmapViewOfFile
GlobalAlloc
HeapFree
InterlockedExchange
GetTickCount
LoadLibraryA
CreateEventA
ExitProcess
GetModuleHandleA
GetProcAddress
InterlockedCompareExchange
CreateProcessA
Sleep
InterlockedDecrement
GetModuleFileNameA
ChangeTimerQueueTimer

ole32

OleUninitialize
OleCreateLinkToFile
CoCreateGuid
CreateILockBytesOnHGlobal
CoGetCallContext
PropVariantClear
CoCreateInstanceEx
CoAllowSetForegroundWindow
OleIsRunning
CoTaskMemFree
CoUninitialize
CoInitialize

user32

GetDoubleClickTime
DrawEdge
SetWindowContextHelpId
DrawTextExA
LookupIconIdFromDirectory
GetSysColorBrush
GetSystemMetrics
ChangeDisplaySettingsW
CreateAcceleratorTableA
GetKeyNameTextW
GetDC
IsRectEmpty
GetWindowTextA
GetWindowLongA
PostMessageW
DeferWindowPos
DrawIcon
MessageBoxIndirectW
TrackPopupMenu
GetParent
GetMessageW
PeekMessageW
GetKeyNameTextA
GetMenuStringW
MonitorFromRect
GetDlgItemTextW
CharNextW
MessageBoxExA
IntersectRect
RemovePropW
CreateDialogParamA
EnumDisplaySettingsW
EndPaint
DefDlgProcA
GetMenuItemInfoA
SetWindowLongA
MonitorFromPoint
SetWindowsHookExW
SetWindowTextA
UnpackDDElParam
FindWindowExW
TranslateAcceleratorW
GetScrollPos
LoadCursorA
InsertMenuItemW
SetWindowsHookExA
SetTimer
KillTimer
UnhookWindowsHookEx
MsgWaitForMultipleObjects
PeekMessageA
WinHelpW

oleaut32

SysAllocStringLen
SysAllocString

advapi32

SetNamedSecurityInfoA
RegCreateKeyExA
RegQueryValueExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegCloseKey
GetUserNameA
LookupAccountNameA
RegDeleteValueA
RegSaveKeyW
RegUnLoadKeyW
CreateProcessWithLogonW
RegOpenKeyW
IsTextUnicode
RegEnumKeyExW
RegDeleteKeyW
RegDeleteValueW
ImpersonateNamedPipeClient
OpenProcessToken
RegSetValueA
SaferSetLevelInformation
GetInheritanceSourceW

gdi32

ArcTo
LineTo
GetTextExtentPointA
SetRectRgn
DeleteDC
SetDCBrushColor
SetArcDirection
GetROP2
CombineRgn
GetObjectW
GetCharWidth32W
GetCurrentPositionEx
SetBkColor
SetLayout
GetGraphicsMode
StrokePath
CreateDIBSection
CreateHalftonePalette
GetStockObject
SetMapperFlags
SetTextAlign

Exports

Exports

CPlApplet

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f84a0f7f51eb49c08ebd9b6a4d2b328d

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 56KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 56KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 2KB