bac62e14a4ad89082c44118edd1fd481e02ffad78a5afed1fb95dcf77d48644c

Sharing

Copy URL

Twitter E-mail

General

Target

bac62e14a4ad89082c44118edd1fd481e02ffad78a5afed1fb95dcf77d48644c
Size

88KB
MD5

77757dfb635365aa2f4a1be8a3f5c8b2
SHA1

6cf310d7c685f9f36b34bfaf72564d9a9e35d869
SHA256

bac62e14a4ad89082c44118edd1fd481e02ffad78a5afed1fb95dcf77d48644c
SHA512

4055cfd5266ac7a094414fa9cf86e04bf083c75e830178fa8dd2417e31ba14755d3ac4d0cd8ef09514f2694cc62b7fc4ed03d4d7ac921bb4bdb22fd1c3acc09a
SSDEEP

1536:r7Pu/Ipl66EaOxQD6lvnEQfLKLk435y+/nTJ84wEdYEraIMWP44Z/OnaQLzb94:PK8fE5lvnn+lpy+/TJ8OdYEraIMWwCmk

Score

N/A

Malware Config

Signatures

Files

bac62e14a4ad89082c44118edd1fd481e02ffad78a5afed1fb95dcf77d48644c
.dll windows x86

5ddc763dcce1619c2a7a08e3c937d07c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetComputerNameW
ResumeThread
FindResourceW
LoadResource
LockResource
GetLocaleInfoW
GetNumberFormatW
SetEvent
CreateEventW
GetExitCodeThread
lstrcpyW
WaitForSingleObject
CreateThread
lstrcmpW
IsBadStringPtrW
GetTickCount
FormatMessageW
lstrlenW
LocalAlloc
LoadLibraryW
FreeLibraryAndExitThread
InterlockedDecrement
lstrcmpiW
GetLastError
ReleaseMutex
DeleteCriticalSection
LocalFree
lstrcpynW
FreeLibrary
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
RtlUnwind
InterlockedCompareExchange
Sleep
InterlockedExchange
DisableThreadLibraryCalls
VirtualAlloc
VirtualFree
LoadLibraryA
GetProcAddress
WideCharToMultiByte
GetVersionExA
CreateEventA
OutputDebugStringA
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetFileAttributesW
GetDriveTypeW
lstrcatW
GetVolumePathNameW
GetVolumeInformationW
GlobalFree
GetCommandLineA
VirtualProtect
CloseHandle
GlobalAlloc

user32

IsWindow
GetAsyncKeyState
CharUpperW
CharNextW
GetDialogBaseUnits
GetWindowRect
IsWindowEnabled
LoadStringW
IsDlgButtonChecked
GetDlgItemInt
GetDlgCtrlID
WinHelpW
GetParent
SetWindowLongW
RemovePropW
GetDlgItem
EnableWindow
SendMessageW
FindWindowW
PostMessageW
DestroyMenu
SetDlgItemInt
SetPropW
GetWindowLongW
wsprintfW
EndDialog
CheckDlgButton
GetFocus
GetNextDlgTabItem
SetFocus
SetWindowTextW
SetTimer
GetCaretBlinkTime
PeekMessageW
SetDlgItemTextW
CheckRadioButton
SendDlgItemMessageW
LoadImageW
MessageBoxW
LoadIconW
DestroyWindow
GetDesktopWindow
KillTimer
MsgWaitForMultipleObjectsEx
UnregisterClassW

advapi32

DeregisterEventSource
RegOpenCurrentUser
RegDeleteValueW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
ImpersonateLoggedOnUser
RevertToSelf
RegCreateKeyExW
RegisterEventSourceW
ReportEventW
RegCloseKey

ole32

CoUninitialize
CoTaskMemAlloc

msvcr71

_except_handler3
_CxxThrowException
memcpy
_amsg_exit
_initterm
free
__dllonexit
_adjust_fdiv
_XcptFilter
memset
malloc
__CppXcptFilter
_onexit

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ddc763dcce1619c2a7a08e3c937d07c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcr71

Sections

.text Size: 74KB - Virtual size: 74KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 4KB - Virtual size: 36KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 74KB - Virtual size: 74KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 4KB - Virtual size: 36KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB