73ecdc325f2feb095440f7474477bf359223f2b34bf4ec117bf2221c879c4053

Sharing

Copy URL Twitter E-mail

General

Target

73ecdc325f2feb095440f7474477bf359223f2b34bf4ec117bf2221c879c4053
Size

146KB
MD5

06221be3683ee62b6f7ad98fa34f4330
SHA1

be8aa19ca242a77c1c2b94cc12160e1112810016
SHA256

73ecdc325f2feb095440f7474477bf359223f2b34bf4ec117bf2221c879c4053
SHA512

e248f11fea9d429d2fc13d6d5b30823790fa63de8fdd2f369de7b9530a542202ee254acb86e84a5522ff48b1a6ea432e57cb259d3bb4b238c019a4a710afae56
SSDEEP

3072:I+NHoWEiI3333333334iqbig6MGRD68wbdioDIhCYuMLHtovkDWfOIAkjxb+zYS:DNHoWC333333333/g8D68wZiaIhCY31X

Score

N/A

Malware Config

Signatures

Files

73ecdc325f2feb095440f7474477bf359223f2b34bf4ec117bf2221c879c4053
.dll windows x86

97c4690dee4893a30bc72a580dbdaeb3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SizeofResource
LockResource
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
WideCharToMultiByte
DeactivateActCtx
GetModuleHandleA
ActivateActCtx
GlobalAlloc
GlobalLock
GlobalUnlock
GetACP
DeleteFileA
GetOEMCP
MulDiv
GetSystemDirectoryW
FreeLibrary
GetTempPathA
GetTempFileNameA
CreateFileA
SetFilePointer
lstrcmpA
FindResourceA
GlobalFree
lstrcmpiA
GetNumberFormatA
GetLocaleInfoA
CreateActCtxW
ReleaseActCtx
GetModuleFileNameW
GetModuleFileNameA
TlsAlloc
TlsFree
GlobalHandle
GlobalReAlloc
GetFileSize
GetFileAttributesA
SearchPathA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetCurrentThread
GlobalDeleteAtom
SetErrorMode
GlobalAddAtomA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetUserDefaultLCID
GetVersion
lstrcmpW
lstrcpyW
RaiseException
VirtualProtect
GetDiskFreeSpaceA
GetFullPathNameA
GetFileTime
SystemTimeToFileTime
GetProfileIntA
IsProcessorFeaturePresent
UnlockFile
SetEndOfFile
MoveFileA
GetVolumeInformationA
FindClose
GetThreadLocale
GetStringTypeExA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileSizeEx
GetFileAttributesExA
LocalFileTimeToFileTime
SetFileAttributesA
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
CopyFileA
SetEvent
ResumeThread
GetAtomNameA
GlobalGetAtomNameA
LocalLock
LocalUnlock
GetSystemTime
GetEnvironmentVariableW
QueryPerformanceCounter
IsDebuggerPresent
DecodePointer
EncodePointer
InterlockedCompareExchange
InterlockedExchange
SetWaitableTimer
CompareStringW
LocalFree
InitializeCriticalSection
HeapCreate
GetProcessHeap
DeleteCriticalSection
HeapDestroy
SetThreadPriority
WaitForSingleObjectEx
GetLastError
DeviceIoControl
GetOverlappedResult
QueueUserAPC
WriteFileEx
HeapAlloc
CreateEventW
CloseHandle
EnterCriticalSection
LeaveCriticalSection
Sleep
SetLastError
UnhandledExceptionFilter
GetLocalTime
FindAtomW
ReadFile
GlobalFindAtomA

user32

ClientToScreen
WindowFromPoint
CallWindowProcA
InvertRect
SetActiveWindow
CreateMenu
MoveWindow
InvalidateRgn
TabbedTextOutA
DrawTextExA
SetCursorPos
MapWindowPoints
LoadBitmapW
CopyRect
LoadImageA
GetIconInfo
CopyImage
GetWindowLongA
SetCursor
DrawFocusRect
GetNextDlgGroupItem
LoadIconA
TrackPopupMenu
GetFocus
SetForegroundWindow
GetDlgCtrlID
GetAsyncKeyState
UpdateWindow
EmptyClipboard
SetClipboardData
CloseClipboard
DrawStateA
GetCapture
LoadAcceleratorsW
TranslateAcceleratorA
GetSystemMetrics
LoadMenuW
GetSubMenu
GetClassInfoA
DefWindowProcA
GetWindow
GetMenuItemCount
GetMenuItemID
IsIconic
GetForegroundWindow
DrawIcon
GetMonitorInfoA
MonitorFromPoint
LoadCursorA
ValidateRect
SetLayeredWindowAttributes
CallNextHookEx
SetWindowsHookExA
UnionRect
SetWindowPos
LockWindowUpdate
GetKeyState
EndDeferWindowPos
AppendMenuA
CreatePopupMenu
IntersectRect
SetScrollPos
EnableMenuItem
GetNextDlgTabItem
GetSystemMenu
IsZoomed
ModifyMenuA
DeleteMenu
SetWindowRgn
NotifyWinEvent
GetTopWindow
GetSysColor
DestroyCursor
CopyAcceleratorTableA
MapVirtualKeyA
SetWindowTextA
GetMenuState
GetMenuItemInfoA
SubtractRect
GetLastActivePopup
SetFocus
UpdateLayeredWindow
EnableScrollBar
GetScrollPos
GetMenuDefaultItem
HideCaret
GrayStringA
EnumChildWindows
SetCapture
GetDoubleClickTime
GetDC
ReleaseDC
FrameRect
ShowScrollBar
IsWindowEnabled
InsertMenuA
RegisterClipboardFormatA
CharUpperBuffA
DrawEdge
UnregisterClassA
ShowOwnedPopups
GetWindowThreadProcessId
SetMenuItemBitmaps
MapVirtualKeyExA
GetKeyboardLayout
IsCharLowerA
EnableWindow
RedrawWindow
InvalidateRect
GetWindowRect
SetRectEmpty
IsWindowVisible
GetCursorPos
ScreenToClient
SetTimer
CharToOemBuffA
OemToCharBuffA
RealChildWindowFromPoint
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
GetDlgItemInt
CheckRadioButton
DefMDIChildProcA
DrawMenuBar
DefFrameProcA
LoadMenuA
LoadAcceleratorsA
GetMenuCheckMarkDimensions
MonitorFromWindow
ScrollWindow
GetScrollInfo
GetScrollRange
RegisterClassA
TrackPopupMenuEx
SetWindowPlacement
CreateWindowExA
GetClassInfoExA
SetMenu
GetMenu
LoadBitmapA
CountClipboardFormats
GetTabbedTextExtentA
AdjustWindowRectEx
SetScrollRange
WindowFromDC
GetMenuStringA
ClipCursor
CharNextA
MsgWaitForMultipleObjectsEx
RemoveMenu
MapDialogRect
SetPropA
RemovePropA
GetPropA
EndDialog
CreateDialogIndirectParamA
GetDlgItem
GetWindowTextLengthA
MsgWaitForMultipleObjects
DestroyWindow
BeginPaint
GetClientRect
EndPaint
RegisterDeviceNotificationW
SetWindowLongW
LoadCursorW
RegisterClassW
DeferWindowPos
GetSysColorBrush
SetClassLongA
GetParent
OpenClipboard
PtInRect
OffsetRect
InflateRect
ReleaseCapture
CopyIcon
BringWindowToTop
DestroyIcon
GetClassNameA
GetWindowPlacement
GetWindowTextA
IsRectEmpty
GetDesktopWindow

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

msvcrt

free
memset
malloc

shlwapi

PathIsUNCA
PathRemoveFileSpecW
PathRemoveExtensionA
PathFindExtensionA
SHStrDupW
UrlUnescapeA
PathStripToRootA

rpcrt4

RpcBindingFromStringBindingW
RpcStringBindingComposeW
RpcBindingSetAuthInfoW
RpcBindingFree

Exports

Exports

CorrespondOrFor
InSeeAImplement
InStandardsThat
InUpdateVersion
InterfacesTo
JavaBeJCPOfThe
MechanismTechnologiesThatThatOf
OfIt
TechnologyClasses
TheStandardsMeans
ToFrom

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 229KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97c4690dee4893a30bc72a580dbdaeb3

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

shlwapi

rpcrt4

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 229KB

.rsrc Size: 28KB - Virtual size: 25KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 229KB

.rsrc
Size: 28KB - Virtual size: 25KB

.reloc
Size: 4KB - Virtual size: 1KB