164ae69519925bcb8c6846d7eeacc5b782296af14c58d1224216ed906ed83848

Sharing

Copy URL Twitter E-mail

General

Target

164ae69519925bcb8c6846d7eeacc5b782296af14c58d1224216ed906ed83848
Size

450KB
MD5

a2891454c6487a9a88a1492ed81c8840
SHA1

5432b61d9ad32d64d63de0d3894924808c8f285c
SHA256

164ae69519925bcb8c6846d7eeacc5b782296af14c58d1224216ed906ed83848
SHA512

858625a30acec27fa5e97096367e39f495916e765f93184c6302cb66cb44b0cdd63da57d285d65a1a23ab9cf63f92321a20f76d10237d6e33a7866d502efb69e
SSDEEP

6144:KNoQgq0lSl+03Ky3WQj2ZKPuDUOE0t4S06og9DpCJkXroWgw9Y03HE5:K9gZlwL31aZKP2m0WSdVDpCaXrK/5

Score

N/A

Malware Config

Signatures

Files

164ae69519925bcb8c6846d7eeacc5b782296af14c58d1224216ed906ed83848
.dll windows x86

267bbadffa1597cf485aa31f95cb14f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

CloseHandle
CompareStringA
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentThreadId
GetDiskFreeSpaceA
GetEnvironmentStrings
GetFileSize
GetFileType
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeW
GetSystemInfo
GetThreadLocale
GetTickCount
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFree
MulDiv
MultiByteToWideChar
RaiseException
ReadFile
RtlUnwind
SetConsoleCtrlHandler
SetEndOfFile
SetFilePointer
SetHandleCount
SetLastError
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
VirtualAlloc
VirtualFree
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
lstrcpyA
lstrcpynA
lstrlenA

gdi32

BitBlt
CopyEnhMetaFileA
CreateBitmap
CreateBrushIndirect
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
CreateDIBitmap
CreateFontIndirectA
CreateHalftonePalette
CreatePalette
CreatePenIndirect
DeleteDC
DeleteEnhMetaFile
DeleteObject
GdiFlush
GetBitmapBits
GetBrushOrgEx
GetCurrentPositionEx
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileBits
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetObjectA
GetPaletteEntries
GetPixel
GetStockObject
GetSystemPaletteEntries
GetTextMetricsA
GetWinMetaFileBits
MaskBlt
MoveToEx
PatBlt
PlayEnhMetaFile
RealizePalette
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDIBColorTable
SetEnhMetaFileBits
SetROP2
SetStretchBltMode
SetTextColor
SetWinMetaFileBits
StretchBlt
UnrealizeObject

user32

CharLowerBuffA
CharNextA
CreateIcon
DestroyIcon
DestroyWindow
DrawIconEx
EnumThreadWindows
FillRect
GetClipboardData
GetDC
GetIconInfo
GetKeyboardType
GetSysColor
GetSystemMetrics
LoadIconA
LoadStringA
MessageBoxA
ReleaseDC
wsprintfA

oleaut32

SysAllocStringLen
SysFreeString
SysReAllocStringLen
SysStringLen
VariantChangeTypeEx
VariantClear
VariantCopyInd

Exports

Exports

_FoxLibBmpToJpeg
_FoxLibJpegToBmp
___CPPdebugHook

Sections

.text
Size: 214KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 194KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

267bbadffa1597cf485aa31f95cb14f2

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

oleaut32

Exports

Exports

Sections

.text Size: 214KB - Virtual size: 216KB

.data Size: 18KB - Virtual size: 36KB

.tls Size: 512B - Virtual size: 4KB

.idata Size: 4KB - Virtual size: 8KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 5KB - Virtual size: 8KB

.reloc Size: 11KB - Virtual size: 12KB

.text Size: 194KB - Virtual size: 196KB

.text
Size: 214KB - Virtual size: 216KB

.data
Size: 18KB - Virtual size: 36KB

.tls
Size: 512B - Virtual size: 4KB

.idata
Size: 4KB - Virtual size: 8KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 5KB - Virtual size: 8KB

.reloc
Size: 11KB - Virtual size: 12KB

.text
Size: 194KB - Virtual size: 196KB