0d16e604dc95033d386d509300c81d559c612a5a4f65f241d09f95212985bca9

Sharing

Copy URL Twitter E-mail

General

Target

0d16e604dc95033d386d509300c81d559c612a5a4f65f241d09f95212985bca9
Size

59KB
MD5

1250633c083112fa90657870ab6f0b40
SHA1

1351d3e7b3d44aec4b191f5d7b09677512f38899
SHA256

0d16e604dc95033d386d509300c81d559c612a5a4f65f241d09f95212985bca9
SHA512

a20ac99d1742ced13cbdb3beec92f5cc22ca8cc761d19a45a363461b0f32f9328de1994c2296868ae7c92470b83438d79d17d4786cf96a90085fa647c2b92845
SSDEEP

768:hcRv+/Aqw3muefbNWf2JCP5MYfWZkPH2km/gFjT3n5GvSbB6IKdDmsIejwi+Jjlk:h6+IqvDQuYPZrPoMjTdtKd6JS+JjaZD

Score

N/A

Malware Config

Signatures

Files

0d16e604dc95033d386d509300c81d559c612a5a4f65f241d09f95212985bca9
.exe windows x86

7a9c91c793eb73a0e5c60adeb492af7d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
ReadFile
GetCurrentProcessId
DisableThreadLibraryCalls
MultiByteToWideChar
CloseHandle
HeapDestroy
UnhandledExceptionFilter
GetModuleFileNameW
GetCurrentProcess
InterlockedIncrement
lstrlenA
GetCurrentThreadId
InterlockedExchange
CreateEventW
VirtualProtect
VirtualProtect
LeaveCriticalSection
GetModuleFileNameW
CloseHandle
GetTickCount
InterlockedCompareExchange
GetProcessHeap
GetTickCount
InterlockedDecrement
QueryPerformanceCounter
InitializeCriticalSection
GetModuleFileNameA
CreateFileW
GetCurrentProcess
UnhandledExceptionFilter
lstrlenA
DisableThreadLibraryCalls
LoadLibraryW
EnterCriticalSection
MultiByteToWideChar
MultiByteToWideChar
LoadLibraryW
MultiByteToWideChar
DisableThreadLibraryCalls
VirtualProtect
GetProcessHeap
HeapFree
InterlockedExchange
InterlockedCompareExchange
HeapFree
GetModuleFileNameW
GetSystemTimeAsFileTime
GetModuleFileNameW
GetLastError
DisableThreadLibraryCalls
QueryPerformanceCounter
VirtualProtect
FreeLibrary
GetLastError

gdi32

BitBlt
GetBkColor
GetWindowExtEx
CreateCompatibleDC
SelectObject
SetTextColor
GetCurrentObject
CreateFontIndirectA
BitBlt
GetWindowOrgEx
CreateSolidBrush
GetPixel
SetBrushOrgEx
GetBkColor
LineTo
SetBrushOrgEx
CreateDIBSection
Rectangle
CreateDIBitmap
SetPixel
SetBkMode
SetBrushOrgEx
CreateFontA
SetWindowExtEx
CreateDIBitmap
GetWindowOrgEx
SetBrushOrgEx
CreateDIBSection
CreateFontA
GetCurrentObject
CreateBitmap
SetWindowExtEx
CreateDIBitmap
SetBkMode
GetBkColor
LineTo
CreateDIBitmap
CreateSolidBrush
Rectangle
CombineRgn
LineTo
Polygon
CreateSolidBrush
GetCurrentObject
SetWindowOrgEx
GetPixel
CreateSolidBrush
SetTextColor
CreateCompatibleDC
StretchBlt
GetWindowExtEx
SetTextColor
CreatePen
CreateRectRgn
Polygon
MoveToEx
CreateBitmap
Rectangle
BitBlt

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 23KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7a9c91c793eb73a0e5c60adeb492af7d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 23KB - Virtual size: 24KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 23KB - Virtual size: 24KB