81ae10cbf5a2258160b2da97be8108f71ece6864ae821195dcd9955c24985aea

General

Target

81ae10cbf5a2258160b2da97be8108f71ece6864ae821195dcd9955c24985aea
Size

32KB
MD5

0995cfc6cbb8fb48ec3a137074588de0
SHA1

79deb339b3013f8bc31cd6cfd0703a3d361f8d4f
SHA256

81ae10cbf5a2258160b2da97be8108f71ece6864ae821195dcd9955c24985aea
SHA512

180dca1864804792d26c3a8ea99af085c68ad30613ea549aba6295c0cfdd369f076afd140107361d7802c8bea6a55241505513d13cc8b9c25077552071451449
SSDEEP

384:VjKlZ3Q3vQ+k3XP1WigNIpNSAQu7q7vuVWqpo5g:VjeZgCv1HXsws2Qyo5

Score

N/A

Malware Config

Signatures

Files

81ae10cbf5a2258160b2da97be8108f71ece6864ae821195dcd9955c24985aea
.dll windows x86

98422957b3bb7afc3a1b3f88564bbb31

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
VirtualFree
HeapAlloc
GetProcessHeap
VirtualAlloc
SetLastError
VirtualProtect
IsBadReadPtr
HeapFree
GetThreadLocale
lstrlenA
MultiByteToWideChar
GetModuleHandleA
SetFilePointer
CloseHandle
GetFileSize
GetProcAddress
Sleep
Process32Next
TerminateProcess
OpenProcess
Process32First
CreateToolhelp32Snapshot
WriteFile
CreateThread
GetLocalTime
CopyFileA
DeleteFileA
GetFileAttributesA
CreateDirectoryA
GetLastError
CreateMutexA
ExitProcess
CreateFileA
LoadLibraryA

user32

GetInputState
PostThreadMessageA
GetMessageA
LoadIconA
LoadCursorA
RegisterClassA
wsprintfA

gdi32

GetStockObject

msvcrt

_adjust_fdiv
malloc
_initterm
__CxxFrameHandler
_strcmpi
memcpy
memset
realloc
_stricmp
free
strncmp
wcstombs
strtol
_except_handler3
??3@YAXPAX@Z
??2@YAPAXI@Z
wcslen
wcscat
wcscpy
strcat
strcpy
strrchr
strstr

Exports

Exports

GetResBounds

Sections

.text
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 854B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98422957b3bb7afc3a1b3f88564bbb31

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 11KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 854B

.text
Size: 12KB - Virtual size: 11KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 854B