cf7a7a3efa2b9161190ba6a1cc358a5cf7250cfde4fb8f6c958d32b50caa5abd

Sharing

Copy URL Twitter E-mail

General

Target

cf7a7a3efa2b9161190ba6a1cc358a5cf7250cfde4fb8f6c958d32b50caa5abd
Size

132KB
MD5

061807d101ea3e994be168731fb02aa4
SHA1

07783fd90926cf1a0221d0851ca035785f370fb5
SHA256

cf7a7a3efa2b9161190ba6a1cc358a5cf7250cfde4fb8f6c958d32b50caa5abd
SHA512

616684aee3a63ad4917d818f41c5b549983ec53dbac4dcca8213e1b54d20bcfc30ddff420a1ae4ce4507142b3261a8b133100fafa7f03bfd3899ad3ffbcfbda6
SSDEEP

3072:duGp04FASGywOJrZLOb3ansXymCPFr6z4mcwOMLqoyr:9p08jwO1VObKsXymCJ6OMLm

Score

N/A

Malware Config

Signatures

Files

cf7a7a3efa2b9161190ba6a1cc358a5cf7250cfde4fb8f6c958d32b50caa5abd
.dll windows x86

5c4713d0abcc3a4b4deb3a9ecea55c64

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersionExW
FreeLibrary
InterlockedDecrement
lstrcpynW
CloseHandle
SetEvent
ResetEvent
ReleaseSemaphore
lstrcmpW
GetProcAddress
SetThreadPriority
GetModuleHandleW
GlobalFree
GlobalUnlock
GlobalHandle
GlobalLock
GlobalAlloc
IsBadReadPtr
GetPrivateProfileStringW
IsBadWritePtr
IsBadCodePtr
CreateFileW
CreateThread
WaitForSingleObject
WideCharToMultiByte
lstrcpyW
CreateEventW
lstrcmpiW
GetCurrentThreadId
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedExchange
GetStringTypeA
LCMapStringW
LCMapStringA
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStringTypeW
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
lstrcatA
GetModuleFileNameA
MultiByteToWideChar
lstrcpyA
InterlockedIncrement
lstrcmpA
lstrlenW
lstrlenA
VirtualProtect
Sleep
GetCommandLineA
GetEnvironmentVariableA
GetModuleHandleA
GetVersion
RtlUnwind
HeapFree
HeapAlloc

user32

TranslateMessage
wsprintfA
CharUpperA
GetAsyncKeyState
ReleaseDC
GetDC
LoadStringA
DefWindowProcA
SendMessageW
GetDlgItemInt
GetMessageW
CharNextW
GetDlgItem
DestroyWindow
PeekMessageW
DispatchMessageW
GetWindowRect
wsprintfW
GetDesktopWindow
EnableWindow
GetWindowLongW
CreateDialogParamW
IsWindow

advapi32

RegDeleteValueA
RegCloseKey
RegSetValueExA
RegOpenKeyA
RegSetValueA

gdi32

GdiFlush
BitBlt
GetDeviceCaps
RestoreDC

ole32

CoCreateInstance
CoTaskMemFree
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoTaskMemAlloc
CoResumeClassObjects
CoCreateInstanceEx
CoInitializeSecurity

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c4713d0abcc3a4b4deb3a9ecea55c64

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 44KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 44KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 3KB