6d369567c7b0e7d4a4ef39c3ac7ae634cfd7652a888e27355af7b9d35e5218f1

Sharing

Copy URL Twitter E-mail

General

Target

6d369567c7b0e7d4a4ef39c3ac7ae634cfd7652a888e27355af7b9d35e5218f1
Size

177KB
MD5

a286e54e0f67454e4990a0e114eeeb50
SHA1

8a9c81481e9243d0edf4fa41cf85d541730eea04
SHA256

6d369567c7b0e7d4a4ef39c3ac7ae634cfd7652a888e27355af7b9d35e5218f1
SHA512

a6536e19c68d5f1222daed7bbf6754aefd69cd57de9f107bc909ee7bbe44904450b45b34e883c9ebc20f2ed04e6a3938ada4a927ae4d8d60e31bfeab86110ea8
SSDEEP

3072:XKm68y5dFws1ChSHZEjpktMpIyi+8PaKZPZh+c9v4gjMpUoJsaUThjcIU8AnzhBQ:a98UIxoHZokWpIyi1ikXX9v4uaihjWnM

Score

N/A

Malware Config

Signatures

Files

6d369567c7b0e7d4a4ef39c3ac7ae634cfd7652a888e27355af7b9d35e5218f1
.dll windows x86

932b9c07e28d3fa96eed373fa66fbcf1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

FindResourceExW
OpenFileMappingW
UnmapViewOfFile
CreateFileMappingW
ResetEvent
SetEvent
SetThreadLocale
LocalFree
SetProcessWorkingSetSize
VirtualLock
GetVersionExA
HeapDestroy
HeapSize
GetThreadLocale
DeleteCriticalSection
GetModuleHandleW
DisableThreadLibraryCalls
WaitForSingleObject
InitializeCriticalSection
TerminateThread
DebugBreak
HeapAlloc
GetCurrentThread
MulDiv
CreateEventW
OpenEventW
IsDebuggerPresent
GetCurrentProcess
GetProcessHeap
LockResource
LeaveCriticalSection
FreeLibrary
EnterCriticalSection
SetLastError
GetLastError
SystemTimeToFileTime
GetSystemTime
CloseHandle
CreateFileA
CreateFileW
SetFileTime
SetFilePointer
GetFileSize
SetEndOfFile
WriteFile
HeapReAlloc
Sleep
RtlUnwind
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
CopyFileA
GetFullPathNameW
OutputDebugStringW
lstrcmpiW
lstrlenW
QueryPerformanceFrequency
MultiByteToWideChar
HeapFree
LoadResource

user32

GetWindowRect
OffsetRect
ReleaseDC
GetDC
GetGuiResources
UnhookWinEvent
GetMonitorInfoW
GetFocus
GetWindowInfo
GetCapture
GetSystemMetrics
CharNextW
UnregisterClassA
AdjustWindowRectEx
TrackMouseEvent

advapi32

RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryInfoKeyW

ole32

CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
PropVariantClear
CoCreateFreeThreadedMarshaler

msvcrt

free
wcsncmp
malloc
fwprintf
calloc
realloc
wcsrchr
memset
fflush

rpcrt4

RpcBindingFromStringBindingW

Exports

Exports

InfoWorkgroupOfInfoThe

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

932b9c07e28d3fa96eed373fa66fbcf1

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

rpcrt4

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 31KB

.data Size: 7KB - Virtual size: 135KB

.rsrc Size: 135KB - Virtual size: 134KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 32KB - Virtual size: 31KB

.data
Size: 7KB - Virtual size: 135KB

.rsrc
Size: 135KB - Virtual size: 134KB

.reloc
Size: 1KB - Virtual size: 1KB