e35a01f9b267d7378da03a157b4f76551c48a7dac4ef5f122822b5d7ac5859b2

Sharing

Copy URL Twitter E-mail

General

Target

e35a01f9b267d7378da03a157b4f76551c48a7dac4ef5f122822b5d7ac5859b2
Size

280KB
MD5

92e183d00cbc823256f4f4738c585ff0
SHA1

d16e64900ca4756dbd5221c372fb09416d6723c7
SHA256

e35a01f9b267d7378da03a157b4f76551c48a7dac4ef5f122822b5d7ac5859b2
SHA512

edff587bd93943ab1dc6985fa4d80c018fbc8783530f907adb9480c1e8bfddbb783bee9108b1af9844434a90444b699d0b4ffdbdcd8f5b65a630e6d276ad8450
SSDEEP

6144:n3HiZKqw1DoQ4iZgVKePRcUj77LXKWLwPiz4UMiFQyUoYsrz:n5ePRNjfTb5XQyUoYsrz

Score

N/A

Malware Config

Signatures

Files

e35a01f9b267d7378da03a157b4f76551c48a7dac4ef5f122822b5d7ac5859b2
.dll windows x86

f8ddff55350986a7f55f28c05eb00e2f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CheckRemoteDebuggerPresent
CreateProcessA
VirtualProtect
DeleteVolumeMountPointA
HeapAlloc
GetLogicalDrives
BackupRead
WritePrivateProfileSectionA

user32

LoadIconA
GetLastInputInfo
CreateMenu
GetWindowPlacement
GetWindow
GetMenuItemID
GetMenu
GetDesktopWindow
RegisterClassW
LoadCursorW
LoadIconW
GetForegroundWindow
RegisterClassA

gdi32

GetStockObject

advapi32

CryptAcquireContextA
AreAllAccessesGranted
CryptReleaseContext
CryptGenRandom

version

VerFindFileA
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
VerFindFileW
VerInstallFileA
VerQueryValueW

msvcrt

memset

gdiplus

GdipIsClipEmpty
GdipSetCustomLineCapStrokeJoin
GdipSetPathGradientLinearBlend
GdipCreatePathGradient
GdipSetImageAttributesNoOp
GdipGetFontHeight
GdipSetAdjustableArrowCapFillState
GdipCreateMetafileFromWmfFile
GdipGetFontCollectionFamilyCount
GdipGetPathData
GdipCombineRegionRegion
GdipGetAdjustableArrowCapWidth
GdipGetStringFormatTabStops
GdipGetFamily
GdipMultiplyPathGradientTransform
GdipCreateStringFormat
GdipCreatePen1
GdipWarpPath
GdipDrawCurve2
GdipIsVisibleClipEmpty
GdipClosePathFigures
GdipGetDpiX
GdipAddPathPolygonI
GdipCreateTexture
GdipGetLineRectI
GdipGetWorldTransform
GdipSetClipRect
GdipTransformPoints
GdipSetPenBrushFill
GdipDrawImagePointsRect
GdipSetLineWrapMode
GdipGetPathGradientRect
GdipRotatePathGradientTransform
GdipTransformPointsI
GdipSetPenLineCap197819
GdipGetCustomLineCapBaseInset
GdipEnumerateMetafileSrcRectDestRectI
GdipSetSolidFillColor
GdipGetAllPropertyItems
GdipRotatePenTransform
GdipPathIterNextMarker
GdipGetPathGradientGammaCorrection
GdipGetAdjustableArrowCapMiddleInset
GdipIsMatrixEqual
GdipAddPathPolygon
GdipEnumerateMetafileSrcRectDestRect
GdipSetPathGradientSigmaBlend
GdipImageGetFrameCount
GdipDrawImagePointRect
GdipGetImageWidth
GdipGetHatchForegroundColor
GdipSetClipGraphics
GdipGetImageDecodersSize
GdipIsVisiblePathPoint
GdipSetPathFillMode
GdipGetPenDashStyle
GdipGetPathGradientRectI
GdipGetFamilyName
GdipPathIterGetSubpathCount
GdiplusStartup
GdipAddPathBeziers
GdipNewPrivateFontCollection

msvfw32

StretchDIB
DrawDibOpen
DrawDibStop
ICDrawBegin
ICInstall
ICMThunk32
DrawDibTime
DrawDibGetBuffer
ICCompressorFree
ICSendMessage
GetOpenFileNamePreviewA
DrawDibGetPalette
DrawDibChangePalette
ICClose
DrawDibClose
DrawDibDraw

comsvcs

CoCreateActivity
ComSvcsLogError
SafeRef
CoEnterServiceDomain
CoLeaveServiceDomain
GetTrkSvrObject

Exports

Exports

BuildFlagArray
CharacterDenyExtern
OpenBrowserSave
PersonalIntegrateString
SecondFunctionPlace

Sections

.text
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 189KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8ddff55350986a7f55f28c05eb00e2f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

version

msvcrt

gdiplus

msvfw32

comsvcs

Exports

Exports

Sections

.text Size: 61KB - Virtual size: 60KB

.rdata Size: 189KB - Virtual size: 189KB

.data Size: 5KB - Virtual size: 9KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 61KB - Virtual size: 60KB

.rdata
Size: 189KB - Virtual size: 189KB

.data
Size: 5KB - Virtual size: 9KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 1KB - Virtual size: 1KB