07227f0580e4c7da2fefefe72cb9b7e9fff9b7e917cec7b9291e7553b38e4033

Sharing

Copy URL Twitter E-mail

General

Target

07227f0580e4c7da2fefefe72cb9b7e9fff9b7e917cec7b9291e7553b38e4033
Size

336KB
MD5

b95ab68593fe77758800bd5a047129d3
SHA1

831d25a40a6693312208b77394c91d2256aeec31
SHA256

07227f0580e4c7da2fefefe72cb9b7e9fff9b7e917cec7b9291e7553b38e4033
SHA512

c9e64546a319959573bc8baa2570d4d30bc17773b340dd37cf338d4b6e6ae119218c7ad1343754cd1ac24603e9ea49ca4a9e13d32a20c7f50c6207ad3cad3e50
SSDEEP

6144:3kAoDvSitj9bbzEneQc52DL6eTL0Ml4Rc+S:3jorp9bb+nc5k6AY+4Rc+S

Score

N/A

Malware Config

Signatures

Files

07227f0580e4c7da2fefefe72cb9b7e9fff9b7e917cec7b9291e7553b38e4033
.dll windows x86

7c4d3a34507ecf9aa24e9be1a0820174

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetSystemTimeAsFileTime
GetCommandLineW
GetCurrentDirectoryW
CompareStringW
FindFirstFileW
FindClose
Sleep
GlobalLock
GlobalUnlock
OutputDebugStringA
GetModuleFileNameW
SetLastError
GetLastError
LeaveCriticalSection
EnterCriticalSection
UnhandledExceptionFilter
GetModuleHandleA
GetModuleHandleW
CreateEventW
GetFileAttributesW
GetVersion
InitializeCriticalSection
ResetEvent
GlobalAlloc
GlobalFree
FlushInstructionCache
GetCurrentProcess
DeviceIoControl
CreateFileA
FormatMessageW
GetConsoleCP
CompareStringA
SetUnhandledExceptionFilter
HeapFree
HeapAlloc
VirtualFree
WaitForSingleObject
lstrlenW
GetWindowsDirectoryW

user32

WinHelpW
GetWindowTextW
EnumWindows
EnableWindow
GetDlgItem
DefWindowProcW
GetSubMenu
LoadMenuW
SetTimer
SetWindowsHookExW
CallNextHookEx
GetFocus
MapWindowPoints
GetClientRect
GetSysColorBrush
RegisterClipboardFormatW
CallWindowProcW
GetWindowLongW
SetForegroundWindow
ShowWindowAsync
GetCursor
LoadBitmapW
LoadStringW
LoadIconW
SetWindowLongW
DestroyWindow
KillTimer
CreateWindowExW

advapi32

CopySid
EqualPrefixSid
RegQueryValueExW
ConvertStringSidToSidW
RegOpenKeyExW
RegEnumKeyExW

ole32

CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoUninitialize
StringFromCLSID
CoInitialize

msvcrt

malloc
wcslen
realloc
free

Exports

Exports

AboveACase
MustOfIsAn
TheDefiningWhitespaceThis

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c4d3a34507ecf9aa24e9be1a0820174

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 112KB - Virtual size: 114KB

.rsrc Size: 44KB - Virtual size: 40KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 112KB - Virtual size: 114KB

.rsrc
Size: 44KB - Virtual size: 40KB

.reloc
Size: 4KB - Virtual size: 1KB