1c34d96f91f71d2ca73526ee738366021dc94bcfa217c9b62c8807e1562a8b1b

Sharing

Copy URL Twitter E-mail

General

Target

1c34d96f91f71d2ca73526ee738366021dc94bcfa217c9b62c8807e1562a8b1b
Size

1.5MB
MD5

925da330904a3b7bf370d9ee873bf8d1
SHA1

3cf6f3d08551dfe45eda1a8bac3c08757b93968f
SHA256

1c34d96f91f71d2ca73526ee738366021dc94bcfa217c9b62c8807e1562a8b1b
SHA512

74a31d621f1bd74a1570b135daabeb0302dd434383ccc07e5dddb657a5d55697273bf82563cd616a06d98c1fb4007d667298b22f5ef10e5c82f0275f69cf04ff
SSDEEP

24576:bcDmHcCFPSHLZKBo4ND+dorQ/fq+17fPJOP3AzPB7WX0c4a4yLsN:butuSgq3PkXz4f

Score

N/A

Malware Config

Signatures

Files

1c34d96f91f71d2ca73526ee738366021dc94bcfa217c9b62c8807e1562a8b1b
.dll windows x86

7c09b83aa391f7cbc48f033afbacb6a2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LPSAFEARRAY_Unmarshal
VarCmp
VarCyFromUI4
VarI1FromDate
VarInt
VarR4FromI2
VariantChangeType
VariantClear
VariantCopy
VariantCopyInd
VariantInit
SysAllocStringLen
SafeArrayPutElement
SafeArrayGetElement
SafeArrayGetUBound
SysFreeString

wsock32

setsockopt
socket
htonl
ntohl

setupapi

CM_Set_DevNode_Problem
SetupCloseInfFile
SetupDiDeleteDeviceInterfaceData
SetupOpenLog
SetupUninstallNewlyCopiedInfs
CM_Get_Device_ID_Size

user32

EnableWindow
EnumThreadWindows
GetKeyboardType
LoadStringA
keybd_event
CharNextA

advapi32

RegOpenKeyExA
RegCloseKey
LockServiceDatabase
RegQueryValueExA

kernel32

VirtualFree
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
SystemTimeToTzSpecificLocalTime
SwitchToThread
SuspendThread
SetThreadLocale
SetThreadExecutionState
SetProcessAffinityMask
SetLastError
SetHandleCount
SetFilePointerEx
VirtualQuery
SetEvent
SetEnvironmentVariableA
SetCommState
SetCommMask
ResumeThread
ResetEvent
RegisterWaitForSingleObject
ReadFile
RaiseException
QueryPerformanceCounter
Module32FirstW
MapViewOfFile
LocalReAlloc
LocalFree
LocalAlloc
WaitForSingleObjectEx
WideCharToMultiByte
WriteFile
SetFilePointer
GetModuleFileNameA
AllocConsole
CloseHandle
ConvertDefaultLocale
CreateEventA
CreateFileA
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FatalExit
FillConsoleOutputAttribute
FindClose
FindVolumeClose
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetConsoleDisplayMode
GetCurrentConsoleFont
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetFileAttributesW
GetFileSize
GetFileTime
GetFileType
GetFullPathNameA
GetHandleInformation
GetLargestConsoleWindowSize
GetLastError
GetLocaleInfoA
GetLogicalDrives
GetModuleHandleA
GetNumberOfConsoleMouseButtons
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessIoCounters
GetProcessPriorityBoost
GetProcessVersion
GetStringTypeExA
GetStringTypeW
GetSystemTimeAsFileTime
GetTapePosition
GetTapeStatus
GetThreadLocale
GetTickCount
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAlloc
GlobalDeleteAtom
GlobalFix
GlobalFree
GlobalHandle
GlobalReAlloc
GlobalUnlock
Heap32ListNext
Heap32Next
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedExchangeAdd
IsDBCSLeadByteEx
IsValidLocale
LCMapStringA
LoadLibraryA
LoadLibraryExA
LoadModule

Exports

Exports

ClearFreeList
GetFunction
ImagAsDouble
Long_FromLong
SimpleFileEx
get_bit_depth
get_tIME
vLoadModuleW
write_init_3

Sections

.text
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7c09b83aa391f7cbc48f033afbacb6a2

Headers

File Characteristics

Imports

oleaut32

wsock32

setupapi

user32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 83KB - Virtual size: 83KB

.rdata Size: 1.2MB - Virtual size: 1.2MB

.data Size: 197KB - Virtual size: 198KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 83KB - Virtual size: 83KB

.rdata
Size: 1.2MB - Virtual size: 1.2MB

.data
Size: 197KB - Virtual size: 198KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 5KB - Virtual size: 4KB