f9f516c07e7ac5cfb229fc521f9ab53a1d33e7e35d718f1f28bf9d0e8bb94c2f

Sharing

Copy URL Twitter E-mail

General

Target

f9f516c07e7ac5cfb229fc521f9ab53a1d33e7e35d718f1f28bf9d0e8bb94c2f
Size

300KB
MD5

a34f8013e3cc0118fd1ffd8e6bcd9ed1
SHA1

761c5d2e8a981920d26126c76603217b5b556dd4
SHA256

f9f516c07e7ac5cfb229fc521f9ab53a1d33e7e35d718f1f28bf9d0e8bb94c2f
SHA512

81163be422b3a0f7bd4137e231465b59a7b6149607f3d30c41a1b4ba9348c1d4a49b41bf6686fe6c28fcc27ad20c61d1f19f699433561996dbd86ceabc841f9e
SSDEEP

6144:9meGE+Au+SmSeZ3bNeU9FcLnyRmaPLc0knTer4U9:97GE+ISydlvcL8dn

Score

N/A

Malware Config

Signatures

Files

f9f516c07e7ac5cfb229fc521f9ab53a1d33e7e35d718f1f28bf9d0e8bb94c2f
.dll windows x86

2fa3605a9f62ab10c68cb1c12cbfb7a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GlobalAlloc
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
GetACP
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
SetHandleCount
SetLastError
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoInitialize
CoCreateInstance

user32

IsWindowVisible
IsZoomed
MoveWindow
RegisterClipboardFormatA
SetFocus
IsIconic
ShowWindow
UnhookWindowsHookEx
CharNextA
CallNextHookEx
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetParent
GetForegroundWindow
DestroyWindow
CreateDialogParamA
SetWindowsHookExA
CharNextW

advapi32

RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA

oleaut32

RegisterTypeLi
SysAllocString
SysFreeString
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
VariantClear
LoadTypeLi

Exports

Exports

BlockSetup
Int_AsUnsignedLongMisk
List_Sort
PendingDeprecationWarning
SimpleParseStringFlags
vInitW
vRegisterCallback
write_info
write_row

Sections

.text
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fa3605a9f62ab10c68cb1c12cbfb7a3

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

oleaut32

Exports

Exports

Sections

.text Size: 99KB - Virtual size: 99KB

.rdata Size: 143KB - Virtual size: 143KB

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 99KB - Virtual size: 99KB

.rdata
Size: 143KB - Virtual size: 143KB

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 4KB - Virtual size: 4KB