8682a04f1722275a3ca4805ec989840d793aa4a4ab6ca8a4721a450f7d032654

Sharing

Copy URL Twitter E-mail

General

Target

8682a04f1722275a3ca4805ec989840d793aa4a4ab6ca8a4721a450f7d032654
Size

152KB
MD5

904af9493a1383a948a0090b85f06d04
SHA1

39c4a91f8cc2827bac5382a2399fec2fb6cb7ff4
SHA256

8682a04f1722275a3ca4805ec989840d793aa4a4ab6ca8a4721a450f7d032654
SHA512

dbf72e3201c2c28cb7f669a22b59072850be0154c4c3b6c383a9bad6dc93dc74d1ec4a66c2724b30cc5a8514fae30e35024c93946f1390890de29d10dbeab357
SSDEEP

3072:rvvB57AVeaQIWYdyXsAMESXE4mrAKiaM1WCKALTF:zTaQ6dyXfMESXIUKi45

Score

N/A

Malware Config

Signatures

Files

8682a04f1722275a3ca4805ec989840d793aa4a4ab6ca8a4721a450f7d032654
.dll windows x86

0c090c1ada0004287607d680742b9f6f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

skinmagicu

ord46
ord13
ord61

kernel32

GetProcAddress
LoadLibraryA
CloseHandle
VirtualAlloc
GetCurrentProcessId
ReleaseMutex
QueryPerformanceCounter
ExitProcess
WaitForSingleObject
GetSystemTimeAsFileTime

user32

TrackPopupMenu
DestroyMenu
RemoveMenu
AppendMenuW
CreatePopupMenu
GetMenu
SetWindowLongW
GetWindowLongW
SetMenu
DrawMenuBar
ModifyMenuW
GetMenuState
DeleteMenu
CheckMenuRadioItem
GetMenuItemInfoW
GetMenuItemCount
SetMenuItemBitmaps
LoadImageW
CreateMenu
PostMessageW
IsWindow
EnableMenuItem
CheckMenuItem
DefWindowProcW
CallWindowProcW
GetMenuItemID

gdi32

DeleteObject

msvcp71

?_Nomemory@std@@YAXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??$?8DU?$char_traits@D@std@@V?$allocator@D@1@@std@@YA_NABV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@0@0@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

msvcr71

??3@YAXPAX@Z
__CxxFrameHandler
??0exception@@QAE@XZ
??1exception@@UAE@XZ
?terminate@@YAXXZ
__CppXcptFilter
_adjust_fdiv
_initterm
free
_except_handler3
__security_error_handler
_onexit
__dllonexit
??1type_info@@UAE@XZ
_callnewh
malloc
_wtoi
wcslen
memmove
_CxxThrowException
??0exception@@QAE@ABV0@@Z
_purecall

Exports

Exports

CreatePlugin

Sections

.text
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c090c1ada0004287607d680742b9f6f

Headers

File Characteristics

Imports

skinmagicu

kernel32

user32

gdi32

msvcp71

msvcr71

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 16KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 484B

.rsrc Size: 112KB - Virtual size: 109KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 20KB - Virtual size: 16KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 484B

.rsrc
Size: 112KB - Virtual size: 109KB

.reloc
Size: 4KB - Virtual size: 2KB