fe28cc539c4a73810bf9cfb1d704fa2c1304773fcfb220ac978fda9b82ca77a9

Sharing

Copy URL Twitter E-mail

General

Target

fe28cc539c4a73810bf9cfb1d704fa2c1304773fcfb220ac978fda9b82ca77a9
Size

228KB
MD5

16020e5532b2c20f23e606ade8b9af10
SHA1

1879f8721989d77761ef1bd29cb9e65bb96b6d59
SHA256

fe28cc539c4a73810bf9cfb1d704fa2c1304773fcfb220ac978fda9b82ca77a9
SHA512

c8c330ba5b4374c00672f0b9c29d94444fff929510d68ff88cf7f9bef7d0559fddb682166b72e43584ce233335280b4d427d698d0c9dd5673e0c325c5d59a8ba
SSDEEP

6144:jkvi8jSIoLFlmsRM85dL5Gqvkvdsbi/Hp:YvinPVGqs1vx

Score

N/A

Malware Config

Signatures

Files

fe28cc539c4a73810bf9cfb1d704fa2c1304773fcfb220ac978fda9b82ca77a9
.dll windows x86

d44560f2dfad15cc9838d89a25591f41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
CharLowerA
CharPrevA
CharNextA
GetSystemMetrics
FindWindowExA
GetWindowThreadProcessId
MessageBoxA
RemovePropA
GetPropA
IsWindowEnabled
GetParent
SetPropA
ShowCursor
GetForegroundWindow
GetActiveWindow
SetActiveWindow
GetWindowLongA
GetWindow
SetWindowPos
SetWindowLongA
GetWindowRect
GetCursorPos
PtInRect
SetTimer
KillTimer
DialogBoxParamA
CallWindowProcA
SendMessageA
FillRect
InvertRect
EndDialog
SendDlgItemMessageA

advapi32

RegEnumKeyExA
RegSetValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyA
RegSetValueExA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

gdi32

CreateFontA
GetObjectA
GetCurrentObject
GetTextMetricsA
SelectObject
TextOutA

msvcr71

malloc
free
realloc
memmove
_stricmp
__security_error_handler
_except_handler3
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
__CppXcptFilter
?terminate@@YAXXZ
_mbctype
strrchr
sprintf
_strlwr
__CxxFrameHandler
atoi
strstr
_CxxThrowException
??0exception@@QAE@ABV0@@Z
strchr
??_U@YAPAXI@Z
??_V@YAXPAX@Z
??1exception@@UAE@XZ
??0exception@@QAE@XZ
strncpy
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
_itoa
_strcmpi
_putenv
printf
_vsnprintf

msvcp71

??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

kernel32

CreateDirectoryA
GetTickCount
WideCharToMultiByte
MultiByteToWideChar
GetCurrentThreadId
GetSystemTimeAsFileTime
QueryPerformanceCounter
ExitProcess
SetErrorMode
GetSystemInfo
GetVersion
GetFileAttributesA
GetModuleFileNameA
GetVersionExA
FreeLibrary
LoadLibraryA
GetProcAddress
GetCurrentProcessId
GetCurrentDirectoryA
SetCurrentDirectoryA
FindFirstFileA
FindNextFileA
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls

Exports

Exports

RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d44560f2dfad15cc9838d89a25591f41

Headers

File Characteristics

Imports

user32

advapi32

gdi32

msvcr71

msvcp71

kernel32

Exports

Exports

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 28KB - Virtual size: 26KB

.reloc Size: 12KB - Virtual size: 10KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 28KB - Virtual size: 26KB

.reloc
Size: 12KB - Virtual size: 10KB

.rmnet
Size: 60KB - Virtual size: 60KB