97e03cdaccf3996f0d0b2c1d93facfd3daf863ef9dba216f3d845db5c786cffd

Sharing

Copy URL Twitter E-mail

General

Target

97e03cdaccf3996f0d0b2c1d93facfd3daf863ef9dba216f3d845db5c786cffd
Size

482KB
MD5

92c36d47adf4f18cddd808115cc34885
SHA1

09a0a325e3bf1ebc8984c265dfa806cdac3c01e4
SHA256

97e03cdaccf3996f0d0b2c1d93facfd3daf863ef9dba216f3d845db5c786cffd
SHA512

caaafb51d222838a27cd8ef391aca31696a27c87763cce9e5dddc97a9cf8924990431a67f7dcb553985d367345b2b82feae52926326ffeb42e44bc2466994748
SSDEEP

12288:12/NatHMTmJDbIh9EI21ynECMfkCSt+6Cuzgg:o/NaO6JYh9E93nfkC/h

Score

N/A

Malware Config

Signatures

Files

97e03cdaccf3996f0d0b2c1d93facfd3daf863ef9dba216f3d845db5c786cffd
.dll windows x86

38690765103a61ee332350d51de92313

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

WriteClassStm
OleSaveToStream
OleRegGetUserType
OleRegGetMiscStatus
OleRegEnumVerbs
OleNoteObjectVisible
OleLoadFromStream
CreateOleAdviseHolder
CreateDataAdviseHolder
CoTaskMemAlloc
CoImpersonateClient
CoCreateInstanceEx
CoCreateInstance

kernel32

GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GlobalAlloc
GlobalLock
GlobalUnlock
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
GetCPInfo
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
SetHandleCount
SetLastError
SizeofResource
Sleep
TerminateProcess
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
GetACP
lstrlenW
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
HeapSize
lstrlenA

gdi32

TextOutA
StretchBlt
SetWindowOrgEx
SetWindowExtEx
SetTextAlign
Rectangle
GetDeviceCaps
GdiPlayPageEMF
DeleteMetaFile
CreateRectRgnIndirect
CreateMetaFileA
CreateCompatibleDC
CloseMetaFile
SaveDC
RestoreDC

advapi32

RegSetValueExA
RegOpenKeyExA
RegEnumKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
LsaEnumeratePrivilegesOfAccount

user32

GetFocus
GetKeyState
GetParent
GetWindowLongA
InvalidateRect
IsChild
IsGUIThread
IsWindow
OffsetRect
PtInRect
RegisterClassExA
ReleaseDC
SetFocus
SetWindowLongA
SetWindowPos
SetWindowRgn
ShowWindow
SwitchToThisWindow
UnionRect
GetClientRect
GetClassInfoExA
EndPaint
DrawIcon
CreateWindowExA
CharNextA
BeginPaint

oleaut32

SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
RegisterTypeLi
OleCreatePropertyFrame
LoadTypeLi
LoadRegTypeLi

Exports

Exports

EvalFrame
ExtendInittab
GivenExceptionMatches
Long_FromVoidPtr
SetItem
_DelItem
_InterruptOccurred
set_convert_alpha

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 150KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38690765103a61ee332350d51de92313

Headers

File Characteristics

Imports

ole32

kernel32

gdi32

advapi32

user32

oleaut32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 59KB - Virtual size: 58KB

.data Size: 150KB - Virtual size: 151KB

.rsrc Size: 160KB - Virtual size: 159KB

.reloc Size: 11KB - Virtual size: 10KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 59KB - Virtual size: 58KB

.data
Size: 150KB - Virtual size: 151KB

.rsrc
Size: 160KB - Virtual size: 159KB

.reloc
Size: 11KB - Virtual size: 10KB