819f55adbbc297402dd208ae763ee8905f91f8b30450e3122ece8d76ec915aa5

General

Target

819f55adbbc297402dd208ae763ee8905f91f8b30450e3122ece8d76ec915aa5
Size

91KB
MD5

84bf25d580c5491e43e88efae95ae561
SHA1

e0c860741fc86f9f0937bc5c799db21addbb4adc
SHA256

819f55adbbc297402dd208ae763ee8905f91f8b30450e3122ece8d76ec915aa5
SHA512

0c85c8a99c5373edda1ffc40615812a4a565d7a0570f685d9c62ae283979baef11c49b47e36cc0f6f15686dd2e8f6011f3dd57bce1d8ccc58ebbb8fc4b5513e4
SSDEEP

1536:HIfjux+wVrpYOinaIKDARVAxlV31nLZgm7ujrtN73BzXO3llqLWilUjE5Y+vI7:HIfctYOFrM8HV31e93tNzB2llqLllUjX

Score

N/A

Malware Config

Signatures

Files

819f55adbbc297402dd208ae763ee8905f91f8b30450e3122ece8d76ec915aa5
.dll windows x86

96ca6ad6eefc397d69880b65ad493832

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetACP
IsDBCSLeadByte
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
Sleep
GetProcAddress
GetUserDefaultLCID
MulDiv
GetSystemTimeAsFileTime
VirtualAlloc
VirtualProtect
VirtualQuery
QueryPerformanceFrequency
QueryPerformanceCounter
IsDebuggerPresent
GetComputerNameA
GetCurrentProcess
IsBadReadPtr
GetModuleFileNameA

user32

GetMenuContextHelpId
GetWindowRect
IsCharLowerA
GetWindowRgn
GetWindowDC
IsClipboardFormatAvailable
WindowFromDC
GetForegroundWindow
GetAncestor
GetWindow
GetLastActivePopup
GetWindowInfo
GetWindowThreadProcessId
GetGUIThreadInfo
IsWindowVisible
IsZoomed
GetWindowContextHelpId

advapi32

IsValidAcl
AreAnyAccessesGranted

msvcrt

_adjust_fdiv
malloc
_initterm
free
_memicmp
_set_error_mode
memchr
_swab
_CIsinh
_CIfmod
_ultoa
localeconv
_pctype
_isctype
modf
__mb_cur_max
frexp
div
_ltoa
_CIcosh

gdi32

GetROP2
GdiGetBatchLimit
GetStretchBltMode

ole32

CoGetCurrentProcess

shell32

ord524
DuplicateIcon
ord66

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96ca6ad6eefc397d69880b65ad493832

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

gdi32

ole32

shell32

Sections

.text Size: 14KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 69KB - Virtual size: 71KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 14KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 69KB - Virtual size: 71KB

.reloc
Size: 3KB - Virtual size: 2KB