d17bb2603d6b1422fbab314fb75433ff56e6e92ff48a72b41fc6145ec9e14b4c

Sharing

Copy URL Twitter E-mail

General

Target

d17bb2603d6b1422fbab314fb75433ff56e6e92ff48a72b41fc6145ec9e14b4c
Size

173KB
MD5

50a5878d9bed8240be29ce8c5ab69a11
SHA1

59be5d1e47f84541cff1a8c054d21603c351c3ad
SHA256

d17bb2603d6b1422fbab314fb75433ff56e6e92ff48a72b41fc6145ec9e14b4c
SHA512

d95dbf54af899f7df50b2f7be59360d03ad0d0cfe848f931fe1812fcd1a49b901141ced106ba1048121f66fa1a887e7b676f9c38e76f965b496391d9be2386f7
SSDEEP

3072:giuRTuE2/6gZS7Od6b9sGviRMSdTYCpnRB4QEm2awNNiktKMZwqjkgUeMJF:gMEs6gc6d4vijdcCpnRH7Xw6Pm4gUr

Score

N/A

Malware Config

Signatures

Files

d17bb2603d6b1422fbab314fb75433ff56e6e92ff48a72b41fc6145ec9e14b4c
.dll windows x86

4b2df1d9b46b9a888a01877461ab5105

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
IsBadHugeReadPtr
FindClose
HeapDestroy
VirtualFree
MulDiv
ResetEvent
lstrlenA
SetThreadLocale
GetModuleHandleW
InitializeCriticalSection
lstrlenW
SetErrorMode
LoadLibraryA
ExitProcess
lstrcmpiA
GetDateFormatA
lstrcpynA
IsBadReadPtr
DeleteFileA
SetEndOfFile
LocalFree
CompareStringA
HeapAlloc
GetProcAddress
SizeofResource
GetVersion
LoadLibraryExA
VirtualAlloc
ReadFile
GetDiskFreeSpaceA
lstrcpyA
GlobalDeleteAtom
GetStdHandle
ExitThread
GetStringTypeW
GetThreadLocale
GetModuleHandleA
GetSystemDefaultLangID
GetStartupInfoA
GetFullPathNameA
WideCharToMultiByte
MoveFileA
GetCommandLineW
GetCPInfo
SetHandleCount
LoadResource
HeapFree
lstrcmpA
GetModuleFileNameA
GetTickCount
RaiseException
LocalReAlloc
FormatMessageA
SetFilePointer
CloseHandle
GetVersionExA
GetLocalTime
GlobalFindAtomA
VirtualQuery
CreateFileA
GetACP
lstrcatA
SetEvent
FreeResource

gdi32

CreateDIBitmap
CreatePalette
GetObjectA
CreateDIBSection
GetTextAlign
GetBkMode
GetPixel

oleaut32

SafeArrayCreate
RegisterTypeLib
SysFreeString
GetErrorInfo
SafeArrayGetElement

user32

GetScrollRange
DeleteMenu
GetMenu
MessageBoxA
CallWindowProcA
UnhookWindowsHookEx
DrawIconEx
KillTimer
GetParent
CreateWindowExA
DrawMenuBar
RemovePropA
GetMenuItemID
CreatePopupMenu
DestroyWindow
IsZoomed
SetParent
ShowWindow
ReleaseCapture
SetClassLongA
DispatchMessageW
GetCursor
DrawIcon
RedrawWindow
SetWindowTextA
MapWindowPoints
EnableWindow
CheckMenuItem
BeginPaint
GetSysColor
SetCursor
CreateMenu
DestroyIcon
IsWindowUnicode
LoadIconA
ReleaseDC
CharLowerBuffA
DispatchMessageA
GetKeyboardLayout
PtInRect
GetPropA
GetDesktopWindow
TranslateMessage
GetKeyboardType
CharNextW
IsWindowEnabled
SetWindowLongA
GetMenuItemInfoA
GetWindowTextLengthA
GetDC
WindowFromPoint
EnableMenuItem
LoadStringA
GetWindow
WaitMessage
GetKeyboardLayoutNameA
GetWindowLongW
GetClientRect
GetKeyboardLayoutList
LoadKeyboardLayoutA
LoadBitmapA
DrawAnimatedRects

Exports

Exports

03DUZTI@4

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 147KB - Virtual size: 303KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b2df1d9b46b9a888a01877461ab5105

Headers

File Characteristics

Imports

kernel32

gdi32

oleaut32

user32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 147KB - Virtual size: 303KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 147KB - Virtual size: 303KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB