5e82c2daaf9c6b98a5e933c6bfe64f12dc1faafbeef8b427d5fd3c7ee3e08010

General

Target

5e82c2daaf9c6b98a5e933c6bfe64f12dc1faafbeef8b427d5fd3c7ee3e08010
Size

12KB
MD5

586a113aef689ddb9334302e3607e120
SHA1

a9b3d07679f47d44c89c05f1b9334e44b53a3315
SHA256

5e82c2daaf9c6b98a5e933c6bfe64f12dc1faafbeef8b427d5fd3c7ee3e08010
SHA512

66e398a88db77101a694c68aae35f4338ad54f1dd97e48571375f6f91009482f626b41ef9309d37587bd483cf2cfee5bf4dc818e8c457996c51af47a6f82ca96
SSDEEP

192:JVABzgLCz29324TSGhFS1zlCAH2sRHvXcT8ddo/M9cU7+wKl:bAB142wSGhUqAHxSMoU9VO

Score

N/A

Malware Config

Signatures

Files

5e82c2daaf9c6b98a5e933c6bfe64f12dc1faafbeef8b427d5fd3c7ee3e08010
.dll windows x86

9ee62bead4429cb1a8c9bcbf8895dd3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
LoadLibraryW
VirtualFree
ExpandEnvironmentStringsW
GetProcAddress
GetTempPathA
TerminateProcess
lstrcpyA
SetFilePointer
GetTempPathW
WideCharToMultiByte
MultiByteToWideChar
GetLocalTime
OutputDebugStringA
lstrlenA
GetFileSize
Sleep
GlobalFree
GlobalAlloc
VirtualAlloc
VirtualProtect
CreateThread
CreateFileA
CloseHandle
GetModuleHandleA
lstrcatA
GetSystemDirectoryA

user32

wsprintfW
GetWindowTextA
FindWindowA
IsRectEmpty
wsprintfA

gdi32

BitBlt
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
CreateDCA
DeleteDC
SelectObject

gdiplus

GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipDisposeImage
GdipSaveImageToFile
GdiplusStartup
GdipGetImageEncodersSize
GdiplusShutdown

ws2_32

send
WSAStartup
WSCGetProviderPath
inet_addr
htons
connect
closesocket
WSCEnumProtocols
socket
recv

msvcrt

memcpy
malloc
free
atoi
memset
strstr

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
InternetReadFile

Exports

Exports

WSPStartup

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ee62bead4429cb1a8c9bcbf8895dd3f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

gdiplus

ws2_32

msvcrt

wininet

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 2KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 2KB

.reloc
Size: 1KB - Virtual size: 1KB