6ce2d3944266fc291b07df410cabcfa674339e4ac61250e73f24537fa96df72c

Sharing

Copy URL Twitter E-mail

General

Target

6ce2d3944266fc291b07df410cabcfa674339e4ac61250e73f24537fa96df72c
Size

487KB
MD5

745c7d3448382a02dbc796ad41e99078
SHA1

63399aabba9a65a8e9293e5ce72816e553312598
SHA256

6ce2d3944266fc291b07df410cabcfa674339e4ac61250e73f24537fa96df72c
SHA512

85c942e45ab852f787474e499ee655358093d8d47bb8065558e58e96ed20b3b050c10a2a49a197d07635e0f23579a650e673f7ac4f591b82ae01525d66a545b3
SSDEEP

6144:HrkyzzZuidGd738jMA3vsapmuz69UpWwPx1blRSRwQRjkih7N0N70BViI7xZpNwW:Lka8i+KjkUmsWYx1brpSkKO7usif

Score

N/A

Malware Config

Signatures

Files

6ce2d3944266fc291b07df410cabcfa674339e4ac61250e73f24537fa96df72c
.dll windows x86

6f0cc1954f92b09c30c74cb4c73bddbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LoadRegTypeLi
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
SysStringLen

user32

SetFocus
ReleaseDC
RegisterClassExA
SetWindowLongA
OffsetRect
IsWindow
IsGUIThread
IsChild
InvalidateRect
GetWindowLongA
GetParent
GetKeyState
GetFocus
GetClientRect
GetClassInfoExA
EndPaint
DrawIcon
CreateWindowExA
CharNextA
BeginPaint
SetWindowPos
SetWindowRgn
ShowWindow
SwitchToThisWindow
UnionRect
PtInRect

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
LsaEnumeratePrivilegesOfAccount

ole32

CoCreateInstance
CoCreateInstanceEx
CoImpersonateClient
CoTaskMemAlloc
CreateDataAdviseHolder
CreateOleAdviseHolder
OleLoadFromStream
OleNoteObjectVisible
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleSaveToStream
WriteClassStm

kernel32

VirtualFree
VirtualAlloc
TerminateProcess
Sleep
VirtualProtect
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
SizeofResource
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA

gdi32

Rectangle
GetDeviceCaps
GdiPlayPageEMF
RestoreDC
CreateRectRgnIndirect
CreateMetaFileA
CreateCompatibleDC
CloseMetaFile
SaveDC
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutA
DeleteMetaFile

Exports

Exports

BadArgument
ClearFreeList
Filename
Member3_Set
get_filter_type
get_pHYs
info_init
write_init_2

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f0cc1954f92b09c30c74cb4c73bddbc

Headers

File Characteristics

Imports

oleaut32

user32

advapi32

ole32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 58KB - Virtual size: 57KB

.data Size: 150KB - Virtual size: 151KB

.rsrc Size: 171KB - Virtual size: 170KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 58KB - Virtual size: 57KB

.data
Size: 150KB - Virtual size: 151KB

.rsrc
Size: 171KB - Virtual size: 170KB

.reloc
Size: 10KB - Virtual size: 9KB