6d1b44610f01aa178a9861d210120a7c43f4a696be6e9b22a5123f59c7a05c52

Sharing

Copy URL

Twitter E-mail

General

Target

6d1b44610f01aa178a9861d210120a7c43f4a696be6e9b22a5123f59c7a05c52
Size

520KB
MD5

0a31eff8b91e6548795894b4201e5cf0
SHA1

57f28204416e8c7469e97a05fa401121f6950fbd
SHA256

6d1b44610f01aa178a9861d210120a7c43f4a696be6e9b22a5123f59c7a05c52
SHA512

cc6b3b1c962185729c3bf2876e1ba005b8a2531bae89ef7485eace618c7982add3703e654dfa27ff39548905a7576e3d7530fdc1fb603e19d99c8ea983c9cd85
SSDEEP

12288:Nmr7yOXRv6hcph5nSokNHBrgzRAlTKqTt8E36J:iF6hdrBBrCulKqTtF36J

Score

N/A

Malware Config

Signatures

Files

6d1b44610f01aa178a9861d210120a7c43f4a696be6e9b22a5123f59c7a05c52
.dll windows x86

5aab3dd00c86f9e28c6748abafd94dd3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GlobalAlloc
ReadFile
GetFileSize
SetFilePointer
GetACP
GlobalFlags
HeapReAlloc
TlsGetValue
GetVersion
GetCPInfo
GetVersionExA
WriteFile
DeleteFileA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
GetTempPathA
GetFileAttributesA
GetTempFileNameA
CreateFileA
HeapFree
HeapAlloc
TlsSetValue
TlsFree
HeapDestroy
HeapCreate
TlsAlloc
GetLocaleInfoA
WideCharToMultiByte
IsValidCodePage
SetEndOfFile
MultiByteToWideChar
GlobalUnlock
GlobalFree
GlobalSize
GlobalLock
IsBadWritePtr
IsBadReadPtr
MulDiv
GetOEMCP
IsBadCodePtr
HeapSize
VirtualFree
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
LocalAlloc
GetProcAddress
FreeLibrary
InterlockedExchange
GetLastError
LoadLibraryA
RaiseException
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCurrentThreadId
GetCommandLineA
SetLastError
SetUnhandledExceptionFilter
ExitProcess
GetModuleHandleA
TerminateProcess
GetCurrentProcess
SetHandleCount
GetStdHandle
GetFileType

user32

ShowCursor
LoadCursorA
ReleaseDC
GetDC
CharUpperA
CharUpperW
GetSysColor
IsWindow
wsprintfA
LoadStringA
SendMessageA
SetCursor

gdi32

CreateMetaFileA
SetStretchBltMode
SelectPalette
RealizePalette
SetWindowOrgEx
SetWindowExtEx
StretchDIBits
GetStockObject
CloseMetaFile
SetEnhMetaFileBits
GetWinMetaFileBits
DeleteEnhMetaFile
CreatePalette
GetMetaFileBitsEx
SetMetaFileBitsEx
DeleteMetaFile
TranslateCharsetInfo
CreateFontIndirectA
SelectObject
GetTextFaceA
GetTextCharsetInfo
DeleteObject
GetDeviceCaps

ole32

StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
GetHGlobalFromILockBytes
CoTaskMemFree
OleLoadFromStream
StgOpenStorageOnILockBytes
StgOpenStorage
ReleaseStgMedium
CreateDataCache
ProgIDFromCLSID
CoGetMalloc
OleConvertOLESTREAMToIStorageEx
CoInitialize
CoUninitialize
OleSaveToStream
WriteClassStg

Exports

Exports

GetFilterInfo
TX_Ex_Export
TX_Ex_Import
TX_Export
TX_Import

Sections

.text
Size: 376KB - Virtual size: 373KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5aab3dd00c86f9e28c6748abafd94dd3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 376KB - Virtual size: 373KB

.rdata Size: 44KB - Virtual size: 43KB

.data Size: 16KB - Virtual size: 18KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 16KB - Virtual size: 14KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 376KB - Virtual size: 373KB

.rdata
Size: 44KB - Virtual size: 43KB

.data
Size: 16KB - Virtual size: 18KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 16KB - Virtual size: 14KB

.rmnet
Size: 60KB - Virtual size: 60KB