1d0c0c13960ad60327973fd3d6507b72ec0f73ebea527ebc81dfc5225531d9fa

Sharing

Copy URL

Twitter E-mail

General

Target

1d0c0c13960ad60327973fd3d6507b72ec0f73ebea527ebc81dfc5225531d9fa
Size

100KB
MD5

1edbe549913e6b78dd7868c9c121525e
SHA1

839d72bb553684871710d028626c5b63b3e26ce3
SHA256

1d0c0c13960ad60327973fd3d6507b72ec0f73ebea527ebc81dfc5225531d9fa
SHA512

f2b372b206289966595789d9758f17d06bfb79254a029ef1719cdd1c5c439bb85aed22db89f474b1031935b34dee748bbb65fe9d48ee278002e1c890af9a861c
SSDEEP

3072:bHtNouTHJ/UziWSulVMrlZrlfYzradeVKgHPKjcM:bNNhHYKrjhAadyKgi

Score

N/A

Malware Config

Signatures

Files

1d0c0c13960ad60327973fd3d6507b72ec0f73ebea527ebc81dfc5225531d9fa
.dll windows x86

faf4ab0ecc247c0f49b33d855e85d156

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesW
GetTempPathW
CreateThread
GetPrivateProfileIntW
GetCurrentProcessId
IsDBCSLeadByte
FindClose
WriteFile
WideCharToMultiByte
MultiByteToWideChar
DeleteCriticalSection
InterlockedIncrement
DeleteFileW
WritePrivateProfileStringW
GetLastError
CloseHandle
lstrlenW
InterlockedDecrement
CopyFileW
GetPrivateProfileStringA
LocalFree
GetExitCodeProcess
LocalAlloc
ReadFile
DeviceIoControl
SetLastError
GetWindowsDirectoryA
ExpandEnvironmentStringsA
CreateDirectoryA
GetCurrentProcess
GetLocalTime
GetTickCount
GetPrivateProfileIntA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
Sleep
CreateFileW
EnterCriticalSection
LeaveCriticalSection
FreeLibrary
GlobalFree
VirtualProtect
GlobalAlloc
lstrlenA
GetCommandLineA

user32

TranslateMessage
MsgWaitForMultipleObjects
ReleaseDC
GetDC
CheckRadioButton
MessageBoxA
LoadStringA
FindWindowA
PostMessageA
wvsprintfA
wsprintfA
SetCursor
SendDlgItemMessageW
GetParent
CheckDlgButton
GetWindowLongW
IsDlgButtonChecked
SetWindowLongW
SetWindowTextW
SendMessageW
MessageBoxW
GetDlgItem
GetDlgItemTextW
SetDlgItemTextW
LoadIconW
DestroyIcon
DialogBoxParamW
LoadStringW
EndDialog
SetFocus
ShowWindow
EnableWindow
IsWindowEnabled
GetWindowThreadProcessId
FindWindowExW
LoadBitmapW

advapi32

RegOpenKeyExA
FreeSid
RegCloseKey
RegQueryValueExA

gdi32

DeleteObject
GetStockObject
GetDeviceCaps

ole32

CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CreateStreamOnHGlobal
CoCreateInstance
CoTaskMemAlloc
CoCreateGuid

msvcr71

malloc
_initterm
_onexit
free
qsort
_CxxThrowException
_except_handler3
fwrite
fclose
strncpy
memset
fopen
__CppXcptFilter
__dllonexit
_adjust_fdiv

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

faf4ab0ecc247c0f49b33d855e85d156

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 69KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 69KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 3KB