4980f8bb4f05de069e47f2f6b1e9484424189cccdd72b99cca5219828981bb8b

Sharing

Copy URL Twitter E-mail

General

Target

4980f8bb4f05de069e47f2f6b1e9484424189cccdd72b99cca5219828981bb8b
Size

533KB
MD5

65ef78ada94ba1fdb14f7a74c0d997c3
SHA1

2d381070eda27e3955ba2f83879917bb20807217
SHA256

4980f8bb4f05de069e47f2f6b1e9484424189cccdd72b99cca5219828981bb8b
SHA512

29d53d061c55220d00b46d437ae0cd4abb8b332a9fdadc8ab43aaa43ddfa0efe67acd08ec0959ad4f4797565f347fe307b534582b71a2456408130fcd46e2514
SSDEEP

6144:tfIk9riiPz6qTCOW9PEZw6qSMlYbNuNDrVugrFQM7lF5PEZw6qSMlYbNuNDrVugR:tfIk92iPz6qTCOW9M8lYcrz3M8lYcrz

Score

N/A

Malware Config

Signatures

Files

4980f8bb4f05de069e47f2f6b1e9484424189cccdd72b99cca5219828981bb8b
.dll windows x86

1e065d20c8b7f100e7b182328c541ad6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoCreateInstance
CoUninitialize

kernel32

MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
CloseHandle
GetTempFileNameA
GetTempPathA
GetProfileStringA
lstrcpynA
WinExec
GetTickCount
GetVersion
GetVersionExA
SetErrorMode
GetLocaleInfoA
FindFirstFileA
UnmapViewOfFile
IsDBCSLeadByte
GetPrivateProfileStringA
DeleteFileA
GetSystemInfo
lstrcpyA
GetSystemTimeAsFileTime
GetCurrentThreadId
QueryPerformanceCounter
ExitProcess
GetCurrentProcessId
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
GetModuleHandleA
lstrlenA
CreateDirectoryA
FindNextFileA
FindClose
DisableThreadLibraryCalls
GetEnvironmentVariableA
GetModuleFileNameA
InterlockedDecrement
InterlockedIncrement
GetLastError

user32

OffsetRect
IntersectRect
FindWindowA
SystemParametersInfoA
DdeGetLastError
DdeCreateStringHandleA
DdeConnect
DdeClientTransaction
DdeGetData
DdeFreeDataHandle
DdeDisconnect
DdeFreeStringHandle
DdeUninitialize
DdeInitializeA
wsprintfA
CharPrevA
CharNextA
CharLowerA
EnumWindows
SendMessageTimeoutA
GetWindowRect
MoveWindow
EnableWindow
DialogBoxParamA
SendDlgItemMessageA
EndDialog
GetDlgItemTextA
SetFocus
InsertMenuA
CreatePopupMenu
InsertMenuItemA
DestroyIcon
MessageBoxA
GetActiveWindow
GetDC
GetSystemMetrics
ReleaseDC
GetSysColor
FillRect
GetIconInfo
DrawIconEx
DrawTextA
LoadImageA
GetDlgItem
SendMessageA
GetMenuItemInfoA
GetSubMenu
DeleteMenu
AppendMenuA
GetMenuItemCount
RemoveMenu

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyExA
RegOpenKeyA
RegDeleteValueA
RegSetValueA
RegCreateKeyA
RegDeleteKeyA
RegEnumKeyA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegQueryValueExA

gdi32

DeleteObject
CreateSolidBrush
SetBkColor
SetTextColor
GetTextExtentPoint32A
GetDCOrgEx
GetClipBox
GetDeviceCaps
GetTextExtentExPointA

comctl32

InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_Create

shell32

ExtractAssociatedIconA
ExtractIconExA
ShellExecuteA

msvcp71

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
?_Nomemory@std@@YAXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

msvcr71

isalpha
isdigit
printf
_mbctype
_stricmp
__CxxFrameHandler
_vsnprintf
_ismbcspace
realloc
malloc
strncmp
memmove
strpbrk
_CxxThrowException
??0exception@@QAE@ABV0@@Z
??1exception@@UAE@XZ
??0exception@@QAE@XZ
_strnicmp
_putenv
isalnum
_callnewh
__security_error_handler
_except_handler3
_onexit
_initterm
_adjust_fdiv
__CppXcptFilter
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_close
_creat
_open
_sopen
_lseek
_tell
_telli64
_lseeki64
_chsize
_fstat
_read
_write
_unlink
_strcmpi
__dllonexit
_purecall
??3@YAXPAX@Z
atol
strtok
strstr
strrchr
strncpy
_splitpath
??_V@YAXPAX@Z
_strlwr
atoi
_itoa
free
atof
time
strchr
isspace
_strdup
sprintf
_errno

Exports

Exports

?DdeCallback@@YGPAUHDDEDATA__@@IIPAUHCONV__@@PAUHSZ__@@1PAU1@KK@Z
RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 124KB - Virtual size: 123KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_DATA
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e065d20c8b7f100e7b182328c541ad6

Headers

File Characteristics

Imports

ole32

kernel32

user32

advapi32

gdi32

comctl32

shell32

msvcp71

msvcr71

Exports

Exports

Sections

.text Size: 124KB - Virtual size: 123KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 4KB - Virtual size: 3KB

_DATA Size: 60KB - Virtual size: 56KB

.rsrc Size: 80KB - Virtual size: 76KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 124KB - Virtual size: 123KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 4KB - Virtual size: 3KB

_DATA
Size: 60KB - Virtual size: 56KB

.rsrc
Size: 80KB - Virtual size: 76KB

.reloc
Size: 12KB - Virtual size: 11KB