69379096e2690f909b829c41cb42ce7d06dfebd240cd16c1f9b806181a28f206

General

Target

69379096e2690f909b829c41cb42ce7d06dfebd240cd16c1f9b806181a28f206
Size

163KB
MD5

a0b1f5b28d19449228d1c1c957f3489d
SHA1

4eae208ab27b9f61f843e13f0d4267c19634503e
SHA256

69379096e2690f909b829c41cb42ce7d06dfebd240cd16c1f9b806181a28f206
SHA512

857f1da6eb88d55689dea1b521b06efb513a650204d28c02a27761a14b21856f9799007648e2af8e99fd1247fad0f099694b5fa47a02da8f298e55c43f646953
SSDEEP

3072:qQNp65uUkWkB40wjBQb+LG5+/ZnhcirxyonhSU48mvD:qQXukO0weCq5Sm6yohSX1v

Score

N/A

Malware Config

Signatures

Files

69379096e2690f909b829c41cb42ce7d06dfebd240cd16c1f9b806181a28f206
.dll windows x86

ade1c2dd11ec4f98a8507b679ac8410a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
SendMessageW
IsWindow

kernel32

GetCommandLineW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFullPathNameW
GetModuleHandleA
FindNextFileW
InterlockedExchange
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualProtect
lstrlenW
FindFirstFileW
ExitProcess
GetProcAddress

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

gdi32

PolyDraw
ArcTo

shell32

SHGetSpecialFolderLocation
SHCreateDirectoryExW
CommandLineToArgvW

msvcrt

_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_controlfp
_exit
_initterm
_ismbblead
_wcsdup
_wcslwr
exit
free
memset
printf
wcsstr
wprintf

Exports

Exports

FIsEmptyA
GenerateUniqueFileName
GetCurrentIndex2
GetObjidFromName
GetRichEdClassStringW
OpenFileStreamW
OpenFileStreamWithFlags
RetrieveKey

Sections

.text
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ade1c2dd11ec4f98a8507b679ac8410a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

advapi32

gdi32

shell32

msvcrt

Exports

Exports

Sections

.text Size: 54KB - Virtual size: 53KB

.rdata Size: 90KB - Virtual size: 89KB

.data Size: 16KB - Virtual size: 17KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 54KB - Virtual size: 53KB

.rdata
Size: 90KB - Virtual size: 89KB

.data
Size: 16KB - Virtual size: 17KB

.rsrc
Size: 1KB - Virtual size: 1KB