83d72ef6d8cb914dd37c75185ab1fbe4d4bd9d6932b3b601bb286378fc37b865

Sharing

Copy URL Twitter E-mail

General

Target

83d72ef6d8cb914dd37c75185ab1fbe4d4bd9d6932b3b601bb286378fc37b865
Size

256KB
MD5

117e648841dc3d91717d9d9b3f3ac5e0
SHA1

b19d36e1257279b3ea27b9314ded9a02602529fe
SHA256

83d72ef6d8cb914dd37c75185ab1fbe4d4bd9d6932b3b601bb286378fc37b865
SHA512

4493c435216eae49093624754763939e28d378817c87bdc66d8a9b24f7c2800444eca0482b6d9e5cdb92fa3f48edbd7aff3e820597e9e1f572324cab50718089
SSDEEP

3072:l841CfTX0+JkvfZzR05rYP/TTn791B8L4cHN53/tMponLL7X1nIn:x7Wkvpm5sPn79CB3thI

Score

N/A

Malware Config

Signatures

Files

83d72ef6d8cb914dd37c75185ab1fbe4d4bd9d6932b3b601bb286378fc37b865
.dll windows x86

2e616288d5abf22b0ef9ebb2dd29f519

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThreadId
GetModuleHandleW
GetProcAddress
GetLocaleInfoW
GetLastError
ExitProcess
GetLocalTime
GetTimeFormatW
GetLongPathNameW
DeleteTimerQueueEx
SetFileApisToOEM
RtlCaptureContext
GetFileAttributesExW
IsDBCSLeadByte
LocalHandle
SetDefaultCommConfigW
GetStringTypeA
GetModuleFileNameW
VirtualFree
IsDBCSLeadByteEx
ReadConsoleOutputCharacterW
VirtualProtect
IsBadStringPtrW
GetVersion
SetComPlusPackageInstallStatus
LocalAlloc
FreeLibrary
InterlockedExchange
LoadLibraryA
RaiseException

gdi32

CreateBitmap
PlayMetaFileRecord
RectInRegion
GdiPlayEMF
CreateHalftonePalette
GdiPlayDCScript
OffsetViewportOrgEx
EudcLoadLinkW
GetWindowOrgEx
GetTextCharset
AddFontResourceExW
SetMiterLimit
GetObjectType
WidenPath
FillPath
GetCharABCWidthsW
CreateRectRgn
GetTextFaceW
CreateDCW
GetClipRgn
EndPage
SetArcDirection
ResizePalette
GetViewportExtEx
DeviceCapabilitiesExA
GetDeviceCaps
RealizePalette
AbortDoc
GetWindowExtEx
CreateColorSpaceA
EqualRgn
StartPage
ArcTo
IntersectClipRect
BeginPath
GetObjectW
GetColorSpace
UpdateICMRegKeyA
CreatePolyPolygonRgn
SetLayout
SetBitmapBits
GetTextExtentPoint32A
GetEnhMetaFileBits
GetCharWidthFloatW
SelectClipRgn
ExcludeClipRect
GetTextExtentExPointW
GetNearestColor
SelectClipPath
StartFormPage
RestoreDC
SetDIBits
GetKerningPairsA
PolyTextOutW
SetMapMode
ExtTextOutW

Exports

Exports

InfoWas
InfoWasAction
ProductTypeANot

Sections

.text
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fdata3
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2e616288d5abf22b0ef9ebb2dd29f519

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 18KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 16KB - Virtual size: 15KB

.fdata3 Size: 8KB - Virtual size: 7KB

.rsrc Size: 192KB - Virtual size: 190KB

.reloc Size: 4KB - Virtual size: 816B

.text
Size: 20KB - Virtual size: 18KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 16KB - Virtual size: 15KB

.fdata3
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 192KB - Virtual size: 190KB

.reloc
Size: 4KB - Virtual size: 816B