451ab35db817814e28df66f2aff01fd6d6f939a490930e86947777c73ac44101

Sharing

Copy URL Twitter E-mail

General

Target

451ab35db817814e28df66f2aff01fd6d6f939a490930e86947777c73ac44101
Size

216KB
MD5

0ccd8d2e0a71ce03c23b1645c7c0999e
SHA1

d3307676b6d3667577aaff75e0288f24ad4f2882
SHA256

451ab35db817814e28df66f2aff01fd6d6f939a490930e86947777c73ac44101
SHA512

b9a757f92d4b96ba2c8634b88730f52252bdaa243cdfb9ddab32d8c9541f82f0fc38dc4656bb6c6b9baa8955779b07a6e06b4edcccf28ac17ff994549d2dd3b2
SSDEEP

3072:FiMAx8c6QeilWd1aCO08H1oJ9kocTpZzYOrYHYDr3wE7:FiecCgCO08HU9ko0XzY8DwC

Score

N/A

Malware Config

Signatures

Files

451ab35db817814e28df66f2aff01fd6d6f939a490930e86947777c73ac44101
.dll windows x86

022641d9f2dbfe3377347537363000b1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
VirtualProtect
HeapSize
GetStringTypeA
GetLocaleInfoA
GetTickCount
GetModuleHandleW
GetStringTypeW
GetProcAddress
LCMapStringW
MultiByteToWideChar
LCMapStringA
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
GetCPInfo
GetOEMCP
GetACP
EnterCriticalSection
LeaveCriticalSection
IsBadCodePtr
ExitProcess
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetModuleHandleA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
LoadLibraryA
InterlockedExchange
VirtualQuery
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr

user32

DefWindowProcW
RegisterClassExW
DestroyWindow
ShowWindow
KillTimer
UpdateLayeredWindow
SetPropW
GetPropW
IsWindow
SetTimer
GetSystemMetrics
CreateWindowExW
MessageBoxW

gdi32

CreateDIBSection
SelectObject
DeleteDC
DeleteObject
CreateCompatibleDC

gdiplus

GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdiplusShutdown
GdiplusStartup
GdipCreateFromHDC
GdipSetCompositingMode
GdipSetCompositingQuality
GdipSetInterpolationMode
GdipDrawImageRectRectI
GdipCloneBitmapAreaI
GdipCloneImage
GdipFree

Exports

Exports

ActivateIcon
OptionSelected

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

022641d9f2dbfe3377347537363000b1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

gdiplus

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 3KB

.text Size: 164KB - Virtual size: 164KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 164KB - Virtual size: 164KB