f4077fbf7b6856fa032ff523e15ba1d6d08248832f3ace47415f4b88e7ff812b

Sharing

Copy URL

Twitter E-mail

General

Target

f4077fbf7b6856fa032ff523e15ba1d6d08248832f3ace47415f4b88e7ff812b
Size

535KB
MD5

917b36be507d5bdcbe399824e8708a49
SHA1

5ea2ea805d72f61b7221a40bdf90fd16e8f17e19
SHA256

f4077fbf7b6856fa032ff523e15ba1d6d08248832f3ace47415f4b88e7ff812b
SHA512

104413911576d2b775bf2b2d8f28661fb4569f47d90b6c2f5d436f2fb7e51a48b0c7c4bdad88805409e5080e2d2d401888f4e1d41b3b540d4ccf522ea29e7f23
SSDEEP

12288:cKvBJFLn9ynSZNL9DjtZPw4doNyOCJSUV3mkK8C:bvBJ99BvTdnOW73rKX

Score

N/A

Malware Config

Signatures

Files

f4077fbf7b6856fa032ff523e15ba1d6d08248832f3ace47415f4b88e7ff812b
.dll windows x86

f38acf7c6277d2a657e3a7ca45a8ee3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

WriteClassStm
OleSaveToStream
OleRegGetUserType
OleRegGetMiscStatus
OleRegEnumVerbs
OleLoadFromStream
OleFlushClipboard
CreateOleAdviseHolder
CreateDataAdviseHolder
CoTaskMemAlloc
CoCreateInstance

oleaut32

VariantClear
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantInit
LoadRegTypeLi

advapi32

RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA

user32

GetClientRect
GetClassInfoExA
EqualRect
GetDC
DefWindowProcA
CreateWindowExA
CharNextA
GetFocus
GetKeyState
GetParent
GetWindowLongA
IntersectRect
InvalidateRect
IsChild
IsWindow
LoadCursorA
PtInRect
RegisterClassExA
ReleaseDC
SetFocus
SetWindowPos
SetWindowRgn
ShowWindow
UnionRect
UnregisterClassA
ValidateRect
DestroyWindow

gdi32

GetDeviceCaps
DeleteDC
GetRgnBox
CreateMetaFileA
CloseMetaFile
Rectangle
SaveDC
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutA
CreateRectRgnIndirect
DeleteMetaFile

kernel32

IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
SetHandleCount
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStdHandle
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
FindResourceA
SetLastError
SizeofResource
Sleep
TerminateProcess
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
HeapSize
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess

Exports

Exports

Method_ClearFreeList
NoMemory
Number_Positive
SetError
_vsnprintf
chunks
get_y_offset_microns
set_read_fn
vSetTargetMPath

Sections

.text
Size: 95KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 189KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f38acf7c6277d2a657e3a7ca45a8ee3c

Headers

File Characteristics

Imports

ole32

oleaut32

advapi32

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 95KB - Virtual size: 95KB

.rdata Size: 69KB - Virtual size: 69KB

.data Size: 189KB - Virtual size: 191KB

.rsrc Size: 171KB - Virtual size: 170KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 95KB - Virtual size: 95KB

.rdata
Size: 69KB - Virtual size: 69KB

.data
Size: 189KB - Virtual size: 191KB

.rsrc
Size: 171KB - Virtual size: 170KB

.reloc
Size: 9KB - Virtual size: 9KB