a98849cceb5b362840600b9400de7f792b7725189144e9f50ccee63467c305c7

Sharing

Copy URL Twitter E-mail

General

Target

a98849cceb5b362840600b9400de7f792b7725189144e9f50ccee63467c305c7
Size

96KB
MD5

04840a442521bebcab24e7dd66ba8c18
SHA1

aaf3f3b807fdc6dffc497c1a97a30271c7f61cc3
SHA256

a98849cceb5b362840600b9400de7f792b7725189144e9f50ccee63467c305c7
SHA512

bb21a6c199d990a2e9c0036864747f5e6dace1356b9a40f3f2b0dfab19a6cd2d46725376c23f6927b2faab26a68932987ebf755b02d2ec4881e168ec3b17b5ea
SSDEEP

3072:60PeBIGk2FANiUZ7jvnMFvvWej4aTf42:A68CZ7yFjTT

Score

N/A

Malware Config

Signatures

Files

a98849cceb5b362840600b9400de7f792b7725189144e9f50ccee63467c305c7
.dll windows x86

54ef91c805704312015d4c6f74692ce7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegLoadKeyA
RegOpenKeyExW
RegCreateKeyW
RegDeleteValueA
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyExA
RegCreateKeyExA
RegEnumValueA
RegQueryValueW
RegLoadKeyW
RegOpenKeyA
RegReplaceKeyW
RegQueryValueExA
RegDeleteKeyA
RegQueryValueExA
RegQueryInfoKeyW
RegFlushKey
RegOpenKeyA
RegGetKeySecurity
RegEnumValueW
RegLoadKeyW
RegQueryValueW
RegLoadKeyA
RegOpenKeyW
RegEnumKeyW
RegOpenKeyA
RegEnumKeyA
RegEnumKeyExA
RegReplaceKeyW
RegEnumValueW
RegLoadKeyA
RegReplaceKeyA
RegEnumKeyW
RegQueryInfoKeyA
RegDeleteKeyW
RegGetKeySecurity
RegQueryInfoKeyW
RegEnumValueW
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyExA
RegReplaceKeyW
RegEnumKeyExW
RegOpenKeyA
RegCreateKeyExW
RegDeleteValueW
RegFlushKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumValueA
RegDeleteKeyW
RegCreateKeyW
RegEnumKeyW
RegEnumValueW
RegQueryValueExW
RegEnumKeyExA
RegFlushKey
RegLoadKeyW
RegQueryInfoKeyA
RegOpenKeyExW
RegOpenKeyA
RegQueryValueA
RegEnumKeyA
RegEnumKeyExW
RegQueryValueExA
RegDeleteValueA
RegOpenKeyExA
RegOpenKeyW
RegQueryValueExA
RegDeleteKeyW
RegDeleteKeyA
RegOpenKeyA
RegEnumValueW
RegEnumKeyW
RegDeleteValueA
RegCreateKeyExA
RegReplaceKeyA

kernel32

CopyFileW
GetLastError
CopyFileA
SetLastError
GetFileTime
GetComputerNameA
ExitThread
CreateThread
GetCommandLineA
DeleteFileA
DeleteAtom
GetStdHandle
WriteFile
GlobalFree
OpenFileMappingA
ReadFile
FindFirstFileA
CopyFileExA
GetFileTime
OpenFileMappingA
WriteFile
GetLastError
FindAtomA
CopyFileW
CreateDirectoryA
SetLastError
ReadConsoleA

comctl32

ImageList_Read
ImageList_BeginDrag
ImageList_GetIcon
ImageList_Destroy
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_AddMasked
ImageList_Create
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_Draw
InitCommonControls
ImageList_Merge
ImageList_Copy
ImageList_Create
ImageList_LoadImageA
ImageList_AddMasked
ImageList_Copy
ImageList_Draw
ImageList_BeginDrag
ImageList_Replace
ImageList_DragLeave
ImageList_EndDrag
ImageList_Merge
ImageList_AddIcon
ImageList_GetDragImage
ImageList_Merge
ImageList_DragShowNolock
ImageList_AddMasked
ImageList_GetIconSize
ImageList_LoadImage
ImageList_Remove
ImageList_Destroy
ImageList_DragEnter
ImageList_DrawEx
ImageList_GetImageInfo
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_DragLeave

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bbs
Size: - Virtual size: 957B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 81KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54ef91c805704312015d4c6f74692ce7

Headers

File Characteristics

Imports

advapi32

kernel32

comctl32

Sections

.text Size: 6KB - Virtual size: 6KB

.bbs Size: - Virtual size: 957B

.init Size: 81KB - Virtual size: 81KB

.idata Size: 5KB - Virtual size: 4KB

.edata Size: 1KB - Virtual size: 1KB

.rdata Size: 512B - Virtual size: 77KB

.text
Size: 6KB - Virtual size: 6KB

.bbs
Size: - Virtual size: 957B

.init
Size: 81KB - Virtual size: 81KB

.idata
Size: 5KB - Virtual size: 4KB

.edata
Size: 1KB - Virtual size: 1KB

.rdata
Size: 512B - Virtual size: 77KB