0f92f92b5bb9fbf6a9f03ccac69e19ab529535383086bceed927aabf32bb6dde

Sharing

Copy URL Twitter E-mail

General

Target

0f92f92b5bb9fbf6a9f03ccac69e19ab529535383086bceed927aabf32bb6dde
Size

272KB
MD5

20dfa8159bdc3cfca5bb2c4ce7a8ace9
SHA1

8efc3f50d1ebf16ccc4a2ebda30b82d191078dc5
SHA256

0f92f92b5bb9fbf6a9f03ccac69e19ab529535383086bceed927aabf32bb6dde
SHA512

630777205ef3d4327756025deccae9ea253c7e582347f2000a16726bfd0de54fd70e2753b4a74ed0d1f55fe187acebe22201cfe63480c3cf05c65d2bd281c257
SSDEEP

3072:0CDKfkqoxitPTFeMmqKMytUmEtr+Kg7MN69rdd4bQk6x0Z2r897kowXFdEQTJqn0:/wkqbTFXDQUiMEhdhx1GkowXcQTJqsM

Score

N/A

Malware Config

Signatures

Files

0f92f92b5bb9fbf6a9f03ccac69e19ab529535383086bceed927aabf32bb6dde
.dll windows x86

abab06c759d2bf8cd6ba0d52ed634b13

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
ReadFile
GetWindowsDirectoryA
CloseHandle
ExitProcess
GetLastError
CreateMutexA
ResetEvent
GetCurrentThreadId
GetCurrentProcessId
IsDebuggerPresent
lstrcpyA
GetCurrentThread
SetEvent
GetVersionExA
GetOEMCP
LocalFree
WriteFile
GetCommandLineA
LocalAlloc
GetCurrentProcess
GetComputerNameA
WaitForSingleObject
ReleaseMutex
GetLogicalDrives
GetSystemDirectoryA
DeleteFileA
OutputDebugStringA
GetCurrentDirectoryA
GetThreadLocale
CreateSemaphoreA
ResumeThread
GetSystemDefaultLangID

advapi32

GetUserNameA

user32

IsWindow
GetCursor
DispatchMessageA
CreateWindowExA
EndMenu
DestroyWindow
CreateDialogParamA
GetProcessWindowStation
GetCapture
SetDoubleClickTime
GetWindow
GetCaretBlinkTime
GetMessageTime
wsprintfA
IsChild
GetSystemMetrics
FindWindowA
IsZoomed
SendMessageA
GetForegroundWindow
EndPaint
MessageBoxA
GetSysColor
TranslateMessage
CloseClipboard
InSendMessage
GetDesktopWindow
SetCapture

ntdll

wcslen
wcsncpy
memset

ole32

CoFreeAllLibraries
CoFreeUnusedLibraries
CoSuspendClassObjects
CoInitialize

gdi32

GdiFlush
LineTo
MoveToEx

shlwapi

SHReleaseThreadRef

Sections

.text
Size: 184KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 436B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abab06c759d2bf8cd6ba0d52ed634b13

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

ntdll

ole32

gdi32

shlwapi

Sections

.text Size: 184KB - Virtual size: 180KB

.data Size: 48KB - Virtual size: 46KB

.rsrc Size: 4KB - Virtual size: 436B

.reloc Size: 32KB - Virtual size: 29KB

.text
Size: 184KB - Virtual size: 180KB

.data
Size: 48KB - Virtual size: 46KB

.rsrc
Size: 4KB - Virtual size: 436B

.reloc
Size: 32KB - Virtual size: 29KB