e77db637a9b6d8327dfd4a478928c1fc8f3e763e75f0d4ee7c2569a373343590

Sharing

Copy URL Twitter E-mail

General

Target

e77db637a9b6d8327dfd4a478928c1fc8f3e763e75f0d4ee7c2569a373343590
Size

641KB
MD5

920fa716cd365e606499a01e689c0cb9
SHA1

a59c2d2f087ca5d2ee17d63b814d28dfaf572b1c
SHA256

e77db637a9b6d8327dfd4a478928c1fc8f3e763e75f0d4ee7c2569a373343590
SHA512

cf23ae92a14d63bdf706bbb374bda6df6b8ae0ede211c3ac77f9b67ba465e1d49fe800bb19b3915292e9aca76f3460463088fd7754c4621acc45fd6a79811c0b
SSDEEP

12288:ZEnIkx2jtEecqd28r+fC2U+w3LYwIRkgCKznHWxNi:AI62jrHd28ACl3LY4gdzn2xN

Score

N/A

Malware Config

Signatures

Files

e77db637a9b6d8327dfd4a478928c1fc8f3e763e75f0d4ee7c2569a373343590
.dll windows x86

c0c41da566cb54b2ab9a38ff34b3833e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

dinput

DirectInputCreateA

user32

GetLastActivePopup
UnregisterClassW
UnhookWindowsHookEx
TabbedTextOutW
SystemParametersInfoW
ShowWindow
SetWindowTextW
SetWindowPos
SetWindowLongW
SetMenuItemBitmaps
SetMenuInfo
SetForegroundWindow
SetFocus
SetCursor
SendMessageW
ReleaseDC
RegisterClassW
PtInRect
PostMessageW
PeekMessageW
OpenIcon
MonitorFromWindow
ModifyMenuW
MapWindowPoints
LoadCursorW
IsWindowEnabled
IsIconic
GrayStringW
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetTopWindow
GetSysColorBrush
GetSysColor
GetSubMenu
GetQueueStatus
GetNextDlgTabItem
GetMenuState
GetMenuItemCount
GetMenuCheckMarkDimensions
AdjustWindowRectEx
AttachThreadInput
CheckMenuItem
ClientToScreen
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetClientRect
GetClassInfoW
GetCapture
EnableWindow
EnableMenuItem
DrawTextW
DispatchMessageW
DestroyMenu
CreateWindowExW
CreatePopupMenu
CreateMenu
CopyRect
GetMenu

kernel32

GetThreadLocale
lstrlenW
lstrcpynW
lstrcatW
WriteFileEx
WideCharToMultiByte
VirtualFree
VirtualAlloc
TlsSetValue
TlsGetValue
TerminateProcess
SetUnhandledExceptionFilter
SetHandleCount
SetErrorMode
RtlUnwind
RtlMoveMemory
ReadDirectoryChangesW
RaiseException
QueryPerformanceCounter
ProcessIdToSessionId
Process32FirstW
PostQueuedCompletionStatus
OpenProcess
MultiByteToWideChar
LocalReAlloc
LocalFree
LocalAlloc
LoadLibraryA
LCMapStringW
LCMapStringA
IsBadReadPtr
IsBadCodePtr
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
BackupRead
CloseHandle
ConnectNamedPipe
CreateThread
CreateToolhelp32Snapshot
EnterCriticalSection
ExitProcess
FileTimeToLocalFileTime
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetFileAttributesW
GlobalUnlock
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessAffinityMask
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemTimeAsFileTime
GetFileType
GetTickCount
GetVersion
GetVersionExA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomW
GlobalReAlloc

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

gdi32

SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetMetaFileBitsEx
SetDIBits
SelectObject
ScaleViewportExtEx
RestoreDC
RectVisible
PtVisible
OffsetViewportOrgEx
LineTo
GetStockObject
GetRasterizerCaps
GetPolyFillMode
GetObjectW
GetDeviceCaps
GetArcDirection
EnumObjects
DeleteDC
CreateHatchBrush
CloseMetaFile

Exports

Exports

ClearFreeList
GetRestricted
List_Type
Number_Int
Number_Rshift
SetAttr
SimpleParseFileFlags
State_Head
set_crc_action

Sections

.text
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 471KB - Virtual size: 471KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0c41da566cb54b2ab9a38ff34b3833e

Headers

File Characteristics

Imports

comctl32

dinput

user32

kernel32

winspool.drv

gdi32

Exports

Exports

Sections

.text Size: 79KB - Virtual size: 79KB

.rdata Size: 471KB - Virtual size: 471KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 79KB - Virtual size: 79KB

.rdata
Size: 471KB - Virtual size: 471KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 3KB - Virtual size: 3KB