1297329d1e1d9e68d763a93e5db4fdab34f82aedc725a3b161403c62fee7e8b3

Sharing

Copy URL Twitter E-mail

General

Target

1297329d1e1d9e68d763a93e5db4fdab34f82aedc725a3b161403c62fee7e8b3
Size

831KB
MD5

13892a71c01833ccffb69bd52b5b3710
SHA1

93c90830fa0724dd0aa20613e163642dfa90b7ac
SHA256

1297329d1e1d9e68d763a93e5db4fdab34f82aedc725a3b161403c62fee7e8b3
SHA512

3cc39dd669cf0530d656acbe91667b62ad97114fd3a3bfec68dd1781ec4d17ec284668f9690f82ae4847458fa70961f41d5f7feacc8c238e7170966a710d355d
SSDEEP

12288:V529uYO7DBeZNK6aZ3RCE3mngPoMU80pVT5F2ggnUKauPiSrlifUYMNqs58IVeb6:svaleXKhRvkqVg3FGn53rlqUnyd4MNW

Score

N/A

Malware Config

Signatures

Files

1297329d1e1d9e68d763a93e5db4fdab34f82aedc725a3b161403c62fee7e8b3
.exe windows x86

95d5ae7304d2970806bd9b7d360f2985

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wow32

WOWFreeMetafile
WOW32ResolveHandle
W32HungAppNotifyThread
WOW32DriverCallback
CopyDropFilesFrom32
WOWGlobalAllocLock16
GetCommShadowMSR
W32Init
WOWUseMciavi16
WOWYield16
WOWCallback16
WOWGlobalUnlock16
WOWGetVDMPointerUnfix

kernel32

GetConsoleFontSize
OpenFileMappingW
LZDone
SetLocalPrimaryComputerNameA
DebugBreakProcess
GetModuleHandleW
DebugActiveProcessStop
RegisterWowExec
AddVectoredExceptionHandler
LZSeek
GetNextVDMCommand
FileTimeToDosDateTime
RequestDeviceWakeup
VirtualFree
GetLocaleInfoA
GlobalWire
LoadLibraryW
SetLocaleInfoA
SetFirmwareEnvironmentVariableA
GetCommState
DeleteVolumeMountPointW
GetModuleHandleA
EnumSystemGeoID
SetCurrentDirectoryW
LoadModule
FoldStringW
GetCurrentThread
SetVolumeMountPointA
ExpandEnvironmentStringsA
LocalUnlock
GetLogicalDriveStringsW
DeleteTimerQueueTimer
GetConsoleInputExeNameW
SetConsoleTitleA

msdart

?IsReadLocked@CLKRHashTable@@QBE_NXZ
?_CalcKeyHash@CLKRLinearHashTable@@ABEKK@Z
?SetDefaultSpinAdjustmentFactor@CFakeLock@@SGXN@Z
?HeadNode@CDoubleList@@QBEQBVCListEntry@@XZ
?SetSpinCount@CReaderWriterLock3@@QAE_NG@Z
?WriteLock@CReaderWriterLock2@@QAEXXZ
?SetTableLockSpinCount@CLKRLinearHashTable@@QAEXG@Z
?_WriteLockSpin@CReaderWriterLock@@AAEXXZ
?ReadUnlock@CReaderWriterLock2@@QAEXXZ
UMSEnterCSWraper
?IsReadUnlocked@CCritSec@@QBE_NXZ
?_ReadLockSpin@CReaderWriterLock@@AAEXXZ
?ValidSignature@CLKRLinearHashTable@@QBE_NXZ
?IsWin98@CMdVersionInfo@@SAHXZ
?SetSpinCount@CSpinLock@@QAE_NG@Z
?MaxSize@CLKRHashTable@@QBEKXZ
?SetSpinCount@CCritSec@@QAE_NG@Z
?sm_dblDfltSpinAdjFctr@CCritSec@@1NA
?_H1@CLKRLinearHashTable@@ABEKK@Z
??1CReaderWriterLock@@QAE@XZ
?ConvertSharedToExclusive@CCritSec@@QAEXXZ
??1CReaderWriterLock2@@QAE@XZ
?ConvertSharedToExclusive@CSpinLock@@QAEXXZ
?_LockSpin@CReaderWriterLock2@@AAEX_N@Z
?IsUsable@CLKRHashTable@@QBE_NXZ
?WriteUnlock@CCritSec@@QAEXXZ
?_DeleteKey@CLKRLinearHashTable@@AAE?AW4LK_RETCODE@@KK@Z
??0CDoubleList@@QAE@XZ

icm32

CMCheckColorsInGamut
CMCreateTransformW
CMTranslateRGBs
CMDeleteTransform
CMTranslateRGB
CMTranslateColors
CMCheckColors
CMCreateProfile
CMConvertIndexToColorName
CMConvertColorNameToIndex
CMCreateTransformExtW
CMGetInfo
CMCreateTransformExt
CMCreateDeviceLinkProfile
CMCreateProfileW
CMIsProfileValid
CMGetNamedProfileInfo
CMCreateMultiProfileTransform
CMCreateTransform
CMTranslateRGBsExt
CMCheckRGBs

msorcl32

SQLPrimaryKeys
SQLExtendedFetch
ConfigDSN

Sections

.text
Size: 392KB - Virtual size: 392KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 197KB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 964B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95d5ae7304d2970806bd9b7d360f2985

Headers

DLL Characteristics

File Characteristics

Imports

wow32

kernel32

msdart

icm32

msorcl32

Sections

.text Size: 392KB - Virtual size: 392KB

.rdata Size: 130KB - Virtual size: 129KB

.data Size: 197KB - Virtual size: 1.5MB

.rsrc Size: 109KB - Virtual size: 109KB

.reloc Size: 1024B - Virtual size: 964B

.text
Size: 392KB - Virtual size: 392KB

.rdata
Size: 130KB - Virtual size: 129KB

.data
Size: 197KB - Virtual size: 1.5MB

.rsrc
Size: 109KB - Virtual size: 109KB

.reloc
Size: 1024B - Virtual size: 964B