c6952bc61c3c8ead1c0ff9a11b2ba2e9c354b477dd1c078ae3d78c466de093c3

Sharing

Copy URL Twitter E-mail

General

Target

c6952bc61c3c8ead1c0ff9a11b2ba2e9c354b477dd1c078ae3d78c466de093c3
Size

120KB
MD5

090c0ceec46a16a5d662614f88fe863c
SHA1

0b1bf5a5210d5a42703870095c75ef72a520f982
SHA256

c6952bc61c3c8ead1c0ff9a11b2ba2e9c354b477dd1c078ae3d78c466de093c3
SHA512

9d52273dc069856ad1e978cb3e049f002382cf98d80a08e4839a32c10b43fd7e72c1000d49dc10d14c8797b887833a021485ed3b99f77167d331bbb58e58693f
SSDEEP

3072:Djo7dyugZItXr7JezGRIVycJQSrFdzJcmJhqKMMiU1m9:D0RnKCX3JrRcyCtrFdVcOqKNP

Score

N/A

Malware Config

Signatures

Files

c6952bc61c3c8ead1c0ff9a11b2ba2e9c354b477dd1c078ae3d78c466de093c3
.dll windows x86

bb60042254eca4c80c3a8b40bc032c42

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysFreeString
VariantCopyInd
LoadTypeLib
VariantClear
SysAllocStringLen

advapi32

RegOpenKeyExA
RegQueryValueA
RegLoadKeyA
RegEnumKeyA
RegCloseKey

ole32

CoCreateInstance
CoFileTimeNow
CoGetClassObject
CoInitialize
CoRegisterClassObject
CoUninitialize
CreateDataAdviseHolder
ReleaseStgMedium
OleUninitialize
WriteFmtUserTypeStg
OleLockRunning
OleInitialize
OleFlushClipboard

user32

LoadAcceleratorsA
GetMessageA
DrawIcon
DrawCaption
DestroyWindow
DestroyCursor
DestroyCaret
DeleteMenu
CreateMenu
CreateIconFromResource
CreateDesktopW
CharToOemA
CharNextA
MessageBoxA

shell32

SHGetMalloc
SHGetFileInfoA
SHBindToParent

shlwapi

PathIsRootA
PathIsRelativeA
PathFindFileNameA
PathQuoteSpacesA
PathCompactPathExA
PathCanonicalizeA
PathAppendA
StrChrA
StrStrIA
PathFindExtensionA

msvcrt

strtol
strstr
strlen
memmove
strchr
time

kernel32

CloseHandle
EnterCriticalSection
ExitProcess
GetACP
GetCommandLineA
GetFileSize
GetLastError
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetStartupInfoA
HeapAlloc
InterlockedIncrement
ReadFile
RtlUnwind
SetLastError
Sleep
TlsSetValue
VirtualFree
WriteFile
lstrcmpiA
lstrcpyA
lstrcpynA

Exports

Exports

Gvdtsf
Hjhd

Sections

.text
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb60042254eca4c80c3a8b40bc032c42

Headers

File Characteristics

Imports

oleaut32

advapi32

ole32

user32

shell32

shlwapi

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 30KB - Virtual size: 32KB

.rdata Size: 31KB - Virtual size: 32KB

.data Size: 30KB - Virtual size: 32KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 28KB

.text
Size: 30KB - Virtual size: 32KB

.rdata
Size: 31KB - Virtual size: 32KB

.data
Size: 30KB - Virtual size: 32KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 28KB