952b2aa7d41df2cedf440cb51557bdab3bcb69d5587b6fe0495c25013b5fae6c

Sharing

Copy URL Twitter E-mail

General

Target

952b2aa7d41df2cedf440cb51557bdab3bcb69d5587b6fe0495c25013b5fae6c
Size

61KB
MD5

093f915fd2d59e42aa79b88e7b4d6b07
SHA1

d0c8df60dd0d1518bfb7c3f65d513f7d243f65b0
SHA256

952b2aa7d41df2cedf440cb51557bdab3bcb69d5587b6fe0495c25013b5fae6c
SHA512

bd2b4d65e7d3780f5c600a4e08447dc07f18efbce657bef4895f25c41ba9cdd5b1939aae21e3f6ae869bef663592cd65e16e28ece64490f96281a765392ebc99
SSDEEP

1536:ZtGxLYTM8MLqt2Xu5qsDBPQfz/zKaDzTdAZlzvU:CyOa2+5q2PWb+wdArz

Score

N/A

Malware Config

Signatures

Files

952b2aa7d41df2cedf440cb51557bdab3bcb69d5587b6fe0495c25013b5fae6c
.dll windows x86

19f004035c464926ec2b3010ed1111f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iser32

BeginPaint
ReleaseCapture
GetClipboardFormatNameA
SetRectEmpty
DestroyMenu
FrameRect
GetWindowThreadProcessId
DefMDIChildProcA
UpdateWindow
CreateWindowExA
TranslateMessage
IsWindowVisible
RegisterWindowMessageA
IsChild
CreateDialogIndirectParamW
ScrollWindowEx
DefWindowProcA
RedrawWindow
CopyRect
DestroyCaret
CallWindowProcA
EnumDisplaySettingsA
SetWindowPlacement
DispatchMessageA
SetScrollRange
InvalidateRect
RegisterClassExW
DefFrameProcA
GetScrollPos
DefMDIChildProcW
DrawFocusRect
GetWindowTextLengthA
IntersectRect
PeekMessageW
GetAsyncKeyState
SendMessageA
wsprintfA
EnumChildWindows
RegisterClassExA
GetMenu
GetMessagePos
SetScrollInfo
CreateDialogIndirectParamA
GetScrollRange
LoadCursorA

kernel32

VirtualAlloc
LCMapStringA
SetErrorMode
TerminateProcess
MapViewOfFile
HeapDestroy
GetFileType
GetACP
lstrlenW
lstrcmpA
WaitForMultipleObjects
InterlockedIncrement
TerminateProcess
SetThreadPriority
CloseHandle
GetCommandLineA
GetEnvironmentStrings
CloseHandle
GlobalSize
FileTimeToSystemTime
VirtualQueryEx
CreateThread
GetModuleHandleA
SetCurrentDirectoryA
IsBadCodePtr
lstrlenW
GetLocaleInfoW
GetStringTypeA
SetFileAttributesW
FlushFileBuffers
CreateFileMappingW
GetOEMCP
GetTimeZoneInformation
GetComputerNameW
OutputDebugStringW
FreeEnvironmentStringsW
GlobalGetAtomNameA
lstrlenA
UnmapViewOfFile

ole32

OleRegEnumVerbs
MkParseDisplayName
ProgIDFromCLSID
OleInitialize
CoIsOle1Class
SetConvertStg
CoDisconnectObject
OleCreate
StringFromCLSID
OleCreateLinkToFile
CreateStreamOnHGlobal
CoRevokeClassObject
CLSIDFromString
CoRegisterMessageFilter
CoTaskMemFree
OleCreateFromData
WriteClassStm
OleFlushClipboard
CoGetClassObject
CreateItemMoniker
OleGetIconOfFile

gdi32

CreatePatternBrush
DeleteObject
GetMetaFileBitsEx
GetViewportOrgEx
CreateFontIndirectA
SaveDC
SelectClipRgn
AnimatePalette
GdiFlush
GetTextCharsetInfo
StartPage
SetDIBits
PlayEnhMetaFileRecord
IntersectClipRect
GetDeviceCaps
AbortDoc
PatBlt
RestoreDC
CreateRectRgnIndirect
LPtoDP
RectVisible
CreateDIBPatternBrushPt
GetEnhMetaFileA
CreateBrushIndirect

dskqqasf

_Getcvt
_Tolower
_FXbig
_Strcoll
_Stof
_LDtest

advapi32

RegOpenKeyExW
RegQueryValueExA

Exports

Exports

CreateProcessNotify
DllClientCleanup
cmmo2bin
DllClientStartup
ConvertSidToString

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19f004035c464926ec2b3010ed1111f6

Headers

File Characteristics

Imports

iser32

kernel32

ole32

gdi32

dskqqasf

advapi32

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1024B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1024B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB