3973e12c01d9aba386456df6e92267d0b522c57f2fe7adf87c621759f3364551

Sharing

Copy URL Twitter E-mail

General

Target

3973e12c01d9aba386456df6e92267d0b522c57f2fe7adf87c621759f3364551
Size

316KB
MD5

827e505dcd3032dfb42170334d7560de
SHA1

15344098184a2fe93290ba600a6c3b472052823a
SHA256

3973e12c01d9aba386456df6e92267d0b522c57f2fe7adf87c621759f3364551
SHA512

131d14cb2a23f157c7a420fdb029812f9818451a04a5a595c016e51f75e5764ba6e5abc6ff3ae16bd271252826c720feb7cc17922cfc6dee6e714b1b4e2c160a
SSDEEP

6144:jM65NwrRUMTVzQFWPcpQmz0xT91oxPOQ5U3JTbQevz3l2EbIUEk:jpfwrR3zQFWoQp4PzU9F712cIUv

Score

N/A

Malware Config

Signatures

Files

3973e12c01d9aba386456df6e92267d0b522c57f2fe7adf87c621759f3364551
.dll windows x86

221e01b82c4ed6e30bb3e3c05136274e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegSetValueExA

oleaut32

LoadTypeLi
RegisterTypeLi
SysAllocString
SysFreeString
SysStringLen
UnRegisterTypeLi
VariantClear
VarUI4FromStr

user32

SetWindowsHookExA
SetFocus
RegisterClipboardFormatA
MoveWindow
IsZoomed
ShowWindow
IsIconic
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetParent
GetForegroundWindow
DestroyWindow
CreateDialogParamA
CharNextW
CharNextA
CallNextHookEx
UnhookWindowsHookEx
IsWindowVisible

ole32

CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoCreateInstance

kernel32

lstrlenW
lstrlenA
lstrcmpiA
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
DeleteCriticalSection
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GlobalAlloc
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy

Exports

Exports

AsVoidPtr
ClearWeakRefs
FileExFlags
_Count
_ascii_formatd
chunk_error
progressive_combine_row
set_tIME

Sections

.text
Size: 113KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

221e01b82c4ed6e30bb3e3c05136274e

Headers

File Characteristics

Imports

advapi32

oleaut32

user32

ole32

kernel32

Exports

Exports

Sections

.text Size: 113KB - Virtual size: 113KB

.rdata Size: 135KB - Virtual size: 135KB

.data Size: 35KB - Virtual size: 35KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 113KB - Virtual size: 113KB

.rdata
Size: 135KB - Virtual size: 135KB

.data
Size: 35KB - Virtual size: 35KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 6KB - Virtual size: 5KB