fc27d71000deb6b07f10569f943123f53b84b6ce27552ec25e95070aa2ca88e4

General

Target

fc27d71000deb6b07f10569f943123f53b84b6ce27552ec25e95070aa2ca88e4
Size

95KB
MD5

0e827c3d76cc6520f676b004aca6b88b
SHA1

6bb87742e6903756f78a06ad1b4185afd4e16de8
SHA256

fc27d71000deb6b07f10569f943123f53b84b6ce27552ec25e95070aa2ca88e4
SHA512

6a25f8d1ae1e7104fd4ab2dd05a8e21bc8c0c82449f725d9a72a5cc2b9f256917d1e0743a7129248664df1af5cf0cee13a469c97a10682291068ea16c0757121
SSDEEP

1536:5lbhLHQDQPoiPFQmSlaCg0TCQYcuOxAplcbvQkcAXDphgfvBwaW4MqGBbM5:9c+oiP6mSlakTCQlx5QXgdse4MqGBb0

Score

N/A

Malware Config

Signatures

Files

fc27d71000deb6b07f10569f943123f53b84b6ce27552ec25e95070aa2ca88e4
.dll windows x86

4af3c23c0d99237195d5af877754e6ab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
DeleteFileA
EnumResourceLanguagesW
ExitProcess
GetACP
GetCommandLineA
GetLastError
GetModuleHandleA
GetOEMCP
GetStartupInfoA
HeapAlloc
InterlockedIncrement
LeaveCriticalSection
LoadResource
RtlUnwind
SetLastError
TlsFree
VirtualAlloc
lstrcmpA
lstrcpyA

advapi32

RegEnumKeyA
RegLoadKeyA
RegOpenKeyExA
RegQueryValueA
RegCloseKey

wininet

InternetSetOptionExA
InternetQueryDataAvailable
InternetGetLastResponseInfoA
InternetGetCookieA
InternetCrackUrlA
InternetConnectA
InternetCloseHandle
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA

user32

DrawIcon
CharLowerA
CreateDesktopW
CreateMenu
DestroyIcon
EndDeferWindowPos
EndMenu
GetWindowTextA
MessageBoxA

shell32

Shell_NotifyIconA
ShellExecuteW
ShellExecuteExA
ShellExecuteA
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
SHBindToParent

Exports

Exports

Vazdrv
Wl

Sections

.text
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4af3c23c0d99237195d5af877754e6ab

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

user32

shell32

Exports

Exports

Sections

.text Size: 34KB - Virtual size: 36KB

.rdata Size: 28KB - Virtual size: 32KB

.data Size: 4KB - Virtual size: 4KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 26KB - Virtual size: 28KB

.text
Size: 34KB - Virtual size: 36KB

.rdata
Size: 28KB - Virtual size: 32KB

.data
Size: 4KB - Virtual size: 4KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 26KB - Virtual size: 28KB