30aa1f027204edda635cc8c9ac39aa10ebf60e5ebca08a0a8da44fa0b887b8db

Sharing

Copy URL Twitter E-mail

General

Target

30aa1f027204edda635cc8c9ac39aa10ebf60e5ebca08a0a8da44fa0b887b8db
Size

103KB
MD5

7965821dfe09eacdd938b36406a84564
SHA1

e6f1317c93050796e820fd07eea86e8d0e2844ea
SHA256

30aa1f027204edda635cc8c9ac39aa10ebf60e5ebca08a0a8da44fa0b887b8db
SHA512

249fef6d489490dced69731f11734b68b9805c27d530c7983964083c65cc2bdc9d0751b53dcfb658dcd1fba5ef807faf2b80cff885fef739df4e2d3601a96c77
SSDEEP

1536:m3RrWtwX2GjG/t9fL1r77opkt2AuTbvDfhLa9G1+vUyiCrXSBk:oEtwmGjG19fp7Rt2x/l8G1yUyiuSB

Score

N/A

Malware Config

Signatures

Files

30aa1f027204edda635cc8c9ac39aa10ebf60e5ebca08a0a8da44fa0b887b8db
.dll windows x86

fceb506ae5dde58b16b30762234f03bd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
ExitProcess
HeapDestroy
SetHandleCount
GetFileType
GetStdHandle
IsValidCodePage
GetModuleFileNameA
GetCPInfo
WriteFile
HeapAlloc
HeapFree
LoadLibraryA
GetModuleHandleExW
GetLogicalDriveStringsW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetProcessHeap
FormatMessageW
LocalFree
HeapSize
SetUnhandledExceptionFilter
InitializeCriticalSection
DeleteCriticalSection
GetModuleHandleA
LeaveCriticalSection
SetEvent
CloseHandle
GetOverlappedResult
DeviceIoControl
CreateEventA
WaitForSingleObject
WaitForMultipleObjects
ResetEvent
GetVersionExW
InterlockedDecrement
InterlockedIncrement
FreeLibrary
CreateEventW
GetModuleHandleW
GetCurrentThreadId
GetTickCount
CreateThread
lstrlenW
UnhandledExceptionFilter
GetCurrentProcess
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetProcAddress
WideCharToMultiByte
DisableThreadLibraryCalls
MultiByteToWideChar
GetLastError
GetStartupInfoA
GlobalFree
GetCommandLineA
GlobalAlloc
EnterCriticalSection
VirtualProtect

user32

LoadStringW
CreateWindowExW
RegisterClassExW
PostMessageW
GetDlgItem
SetCursor
LoadCursorW
GetWindowTextLengthW
EnableWindow
SetWindowTextW
GetSystemMetrics
InvalidateRect
GetClientRect
SendDlgItemMessageW
CallWindowProcW
SetWindowLongW
MessageBeep
GetWindowTextW
GetWindowLongW
GetParent
ShowWindow
SetFocus
SendMessageW

advapi32

RegEnumKeyExW
RegDeleteKeyW
RegSetValueExW
RegSetValueW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey

gdi32

DeleteObject
CreateFontW

ole32

StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoFreeUnusedLibraries
IIDFromString

msvcr71

_onexit
free
_amsg_exit
memset
wcschr
memmove
_except_handler3
_vsnwprintf
_initterm
malloc
_adjust_fdiv
__CppXcptFilter
__dllonexit
_XcptFilter

Sections

.text
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fceb506ae5dde58b16b30762234f03bd

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 69KB - Virtual size: 69KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 36KB

.rsrc Size: 23KB - Virtual size: 22KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 69KB - Virtual size: 69KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 36KB

.rsrc
Size: 23KB - Virtual size: 22KB

.reloc
Size: 2KB - Virtual size: 2KB