d928da8edc1cbc46fcc86639e541098f876a9eb74bc9c2fb44e6ddb5535023c6

Sharing

Copy URL Twitter E-mail

General

Target

d928da8edc1cbc46fcc86639e541098f876a9eb74bc9c2fb44e6ddb5535023c6
Size

115KB
MD5

0eebd9efedec1668ad9cdeeebbb72ab0
SHA1

1b703f82c26ef626de646c5173b15424654a17da
SHA256

d928da8edc1cbc46fcc86639e541098f876a9eb74bc9c2fb44e6ddb5535023c6
SHA512

92e68f778f2e3e1943b772438f66f8e94deb35642879276ce6d8b48ffad454880b16cc6e488e51d1bcd72240056531b1b6f0795cc867cdb8244237c58dbe410c
SSDEEP

1536:fFXJ+NbfryLSVEztMdhkg6/exGuAO32iws2ThKZOcu5GMsZ8VKQmZoifxIpZXfsQ:qNbL2MgF/Ua8EuZjvoifxIph0pW

Score

N/A

Malware Config

Signatures

Files

d928da8edc1cbc46fcc86639e541098f876a9eb74bc9c2fb44e6ddb5535023c6
.dll windows x86

df3015a9d0b66ae1a3e83a440b5ca877

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegOpenKeyA
RegEnumValueW
RegReplaceKeyA
RegEnumKeyExA
RegEnumKeyA
RegQueryValueExA
RegOpenKeyW
RegOpenKeyExA
RegCreateKeyExA
RegEnumKeyW
RegLoadKeyW
RegEnumValueA
RegGetKeySecurity
RegDeleteValueW
RegOpenKeyExW
RegFlushKey
RegDeleteValueA
RegQueryValueW

kernel32

CopyFileW
GetCPInfo
GlobalFree
Sleep
OpenFile
GetStdHandle
OpenFileMappingA
SetLastError
WriteFile
GetFileSize
CreateThread
GetComputerNameA
CopyFileExW
GetLastError
DeleteAtom
ReadConsoleA
GetFileTime
CopyFileA

user32

CopyIcon
DialogBoxParamW
DialogBoxParamA
CopyImage
GetFocus
BlockInput
DrawTextW
GetWindowTextLengthA
GetCursor
GetMenu
LoadMenuA
GetDlgItem
CopyRect
DrawTextA
CalcMenuBar
LoadCursorA
BlockInput
GetWindowTextLengthA
GetWindowTextA
DrawTextA
GetDC
DrawTextW
CopyImage
DialogBoxParamW
DrawTextW
CalcMenuBar
GetMenu
LoadCursorA
IsWindow
GetCursor
EndDialog
DialogBoxParamW
IsMenu
CopyImage
AlignRects

comctl32

CreateUpDownControl
CreateToolbarEx
ImageList_Add
CreateUpDownControl
DrawStatusTextA
ImageList_Create
DrawStatusTextW
DllGetVersion
CreateMappedBitmap
MenuHelp
InitCommonControls
ImageList_AddIcon
ImageList_AddMasked
ImageList_BeginDrag
DrawInsert
ImageList_Copy
ImageList_Destroy
CreateToolbar
CreateToolbarEx
CreateStatusWindowA

gdi32

ExtTextOutA
CloseMetaFile
AddFontResourceTracking
ClearBitmapAttributes
RestoreDC
GetClipBox
BeginPath
ClearBrushAttributes
AddFontMemResourceEx
GetBitmapBits
GetPixel
GetBrushOrgEx

shell32

ExtractIconEx
DragQueryFile
DragAcceptFiles
ExtractIconResInfoA
DragQueryFileAorW
SHUpdateImageA
SHChangeNotifyDeregister
ExtractIconExA
ShellAboutA
DragQueryFileA
FindExeDlgProc
SHDefExtractIconA
SHUpdateImageW
SHChangeNotifyRegister
ExtractIconResInfoW
DragQueryPoint
FreeIconList
CheckEscapesA

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bbs
Size: - Virtual size: 67KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: - Virtual size: 175B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 749B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df3015a9d0b66ae1a3e83a440b5ca877

Headers

File Characteristics

Imports

advapi32

kernel32

user32

comctl32

gdi32

shell32

Sections

.text Size: 28KB - Virtual size: 27KB

.data Size: 80KB - Virtual size: 80KB

.bbs Size: - Virtual size: 67KB

.idata Size: 4KB - Virtual size: 3KB

.tls Size: - Virtual size: 175B

.rdata Size: 512B - Virtual size: 749B

.rsrc Size: 1024B - Virtual size: 516B

.text
Size: 28KB - Virtual size: 27KB

.data
Size: 80KB - Virtual size: 80KB

.bbs
Size: - Virtual size: 67KB

.idata
Size: 4KB - Virtual size: 3KB

.tls
Size: - Virtual size: 175B

.rdata
Size: 512B - Virtual size: 749B

.rsrc
Size: 1024B - Virtual size: 516B