974d05f5914bada2ba8400b713ee27ae2bfdeb6366b664ed39e38ec1caeb379e

Sharing

Copy URL Twitter E-mail

General

Target

974d05f5914bada2ba8400b713ee27ae2bfdeb6366b664ed39e38ec1caeb379e
Size

800KB
MD5

30ea1d570d75f497b7ec35dcd9c42de0
SHA1

b2ce7802b982f0366b3cabffd5b128cbba4c2ad0
SHA256

974d05f5914bada2ba8400b713ee27ae2bfdeb6366b664ed39e38ec1caeb379e
SHA512

c2a895ce5fa8916cf3fcd07e15b1481658b2f7c3ad326633c6f9f849a425a8a47d4cbfbcf1350310e3a6c22e58eae7b10d8c23fc9b4c48849a05793325aa05a2
SSDEEP

24576:pP+fjvBzfKwb/jj8LZprqbp3BAIJHGZy0wTf4wAEWYHKP8m:IsR5qDVTXT

Score

N/A

Malware Config

Signatures

Files

974d05f5914bada2ba8400b713ee27ae2bfdeb6366b664ed39e38ec1caeb379e
.dll windows x86

b92e5ad6530afdaac3cc18836c862647

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pncrt

_adjust_fdiv
_vsnprintf
strcspn
strtok
printf
_purecall
rand
??3@YAXPAX@Z
_ftol
_stricmp
_getmbcp
strstr
malloc
sprintf
atoi
sscanf
isalnum
isalpha
tolower
??2@YAPAXI@Z
_mbctype
_strcmpi
_strupr
_putenv
isspace
strspn
_ismbcspace
memmove
atol
strncmp
free
strtol
strncpy
isdigit
strchr
strtod
_initterm
_onexit
__dllonexit
wcslen
toupper
_strnicmp
realloc
strrchr

ole32

RevokeDragDrop
RegisterDragDrop

kernel32

CreateDirectoryA
InterlockedDecrement
InterlockedIncrement
GetVersionExA
LoadLibraryA
SetErrorMode
FreeLibrary
GetProcAddress
GetModuleFileNameA
lstrlenA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
GetTickCount
GetCurrentThreadId
OutputDebugStringA
GlobalUnlock
GlobalLock
WideCharToMultiByte
GetModuleHandleA
GetFileAttributesA
Sleep
GetCurrentProcess
SetProcessWorkingSetSize
GetVersion
GetSystemInfo
MultiByteToWideChar
lstrcpyA

user32

CallNextHookEx
RegisterClipboardFormatA
GetForegroundWindow
MoveWindow
InflateRect
ScreenToClient
GetDoubleClickTime
GetSubMenu
GetMenuItemCount
UnhookWindowsHookEx
SetWindowsHookExA
FindWindowA
DeleteMenu
GetMenuItemInfoA
EnumThreadWindows
SetActiveWindow
UpdateWindow
FlashWindow
GetWindow
IsWindowEnabled
GetMenu
InsertMenuItemA
ClipCursor
IsZoomed
SetParent
GetMenuItemID
BringWindowToTop
RegisterWindowMessageA
DestroyIcon
GetSystemMenu
RemoveMenu
EnableMenuItem
FillRect
DrawTextExA
GetSystemMetrics
CreatePopupMenu
DestroyMenu
SetWindowRgn
GetDC
ReleaseDC
GetFocus
SetFocus
GetWindowThreadProcessId
RedrawWindow
SetRect
IntersectRect
OffsetRect
GetLastActivePopup
SetForegroundWindow
AttachThreadInput
PostMessageA
GetWindowPlacement
GetActiveWindow
GetCursorPos
MessageBoxA
IsWindowVisible
SetWindowPlacement
CharNextA
GetKeyState
CharPrevA
SetMenu
CharLowerA
SetMenuItemInfoA
LoadBitmapA
TrackPopupMenuEx
IsMenu
GetParent
MapWindowPoints
SetWindowPos
IsRectEmpty
EnableWindow
ShowWindow
SetWindowTextA
GetWindowLongA
GetSysColor
GetClientRect
SetWindowLongA
SendMessageA
ClientToScreen
GetWindowRect
PtInRect
SystemParametersInfoA
IsWindow
IsIconic

gdi32

PatBlt
CreateCompatibleBitmap
GetDCOrgEx
GetDIBits
GetDeviceCaps
ExtCreateRegion
GetTextMetricsA
CreatePen
RoundRect
Ellipse
GetClipBox
SetPixel
CreateFontIndirectA
SetBkMode
CreateRoundRectRgn
CreateRectRgn
CombineRgn
GetTextExtentPoint32A
SetTextColor
SetBkColor
CreateSolidBrush
DeleteObject
CreateDCA
CreateCompatibleDC
GetStockObject
SelectObject
GetTextFaceA
DeleteDC
GetObjectA
GetPixel

comctl32

ord17

shell32

SHAppBarMessage

advapi32

RegOpenKeyA
RegQueryValueA
RegCloseKey
RegOpenKeyExA

Exports

Exports

RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 564KB - Virtual size: 561KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b92e5ad6530afdaac3cc18836c862647

Headers

File Characteristics

Imports

pncrt

ole32

kernel32

user32

gdi32

comctl32

shell32

advapi32

Exports

Exports

Sections

.text Size: 564KB - Virtual size: 561KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 24KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 60KB - Virtual size: 58KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 564KB - Virtual size: 561KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 24KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 60KB - Virtual size: 58KB

.rmnet
Size: 60KB - Virtual size: 60KB