5b51f0ce956237fc2c376a7c87851ffde9c137f5e8318cfc10149cd1ca724c48

General

Target

5b51f0ce956237fc2c376a7c87851ffde9c137f5e8318cfc10149cd1ca724c48
Size

140KB
MD5

93aea01858db3a10e7a08ec8183e92ef
SHA1

83f4c8e957aad662f8584400e874d28e6c4dc474
SHA256

5b51f0ce956237fc2c376a7c87851ffde9c137f5e8318cfc10149cd1ca724c48
SHA512

5f44a469555808a663cf7678fdcc84046267d3336bb29e77b13c55d8a81253d1c8878ae561c99c8f726d452baf89719af69dc129c89ba6d4b866ea174d4f0a50
SSDEEP

3072:z0GFqZKKvuLJdeuoTlyKe2zL/lO3/dg/otl5+9ae2J+46xAIg:Yy2KKvuL3NUlyvEUCErn4m

Score

N/A

Malware Config

Signatures

Files

5b51f0ce956237fc2c376a7c87851ffde9c137f5e8318cfc10149cd1ca724c48
.dll windows x86

203e3d81392ce5e78ae285e304522033

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
Sleep
lstrlenA
GetModuleHandleA
InterlockedDecrement
ReleaseMutex
GetProcAddress
CreateEventA
WaitForSingleObject
GetModuleFileNameA
GetCommandLineA
MapViewOfFile
CreateDirectoryA
LocalFree
lstrlenW
CloseHandle
LeaveCriticalSection
CreateProcessA
UnmapViewOfFile
GetLastError
InterlockedCompareExchange
InterlockedIncrement
SetLastError
CopyFileA
GetTickCount
LoadLibraryA
ExitProcess
OpenEventA

ole32

CoUninitialize
OleSetContainedObject
CreateBindCtx
CoCreateGuid
OleCreate
CoInitialize

user32

TranslateMessage
SetWindowLongA
GetWindowLongA
PostQuitMessage
PostMessageA
DefWindowProcA
GetParent
CreateWindowExA
KillTimer
DestroyWindow
FindWindowA
GetClassNameA
RegisterWindowMessageA
SetTimer
GetSystemMetrics
GetMessageA
SendMessageA
DispatchMessageA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

shlwapi

StrStrIW
UrlUnescapeW

advapi32

RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA

Exports

Exports

Handlernet90

Sections

.text
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

203e3d81392ce5e78ae285e304522033

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 120KB - Virtual size: 116KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 120KB - Virtual size: 116KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB