f48d5dc7675fc90200c3f6feb2b9ab052e3573cadd21dbf3bf5d4c3b51b10a57

Sharing

Copy URL

Twitter E-mail

General

Target

f48d5dc7675fc90200c3f6feb2b9ab052e3573cadd21dbf3bf5d4c3b51b10a57
Size

120KB
MD5

5629ef243720a06ec8e4006125222b95
SHA1

17bd8143ade18b4d0ee5c5ec231d09b77c075ed7
SHA256

f48d5dc7675fc90200c3f6feb2b9ab052e3573cadd21dbf3bf5d4c3b51b10a57
SHA512

19ada7917c375940ecfef40a406f4de5c0525a30c861fc2463c6bc380e44d925fec5dbeee2962bcd4631ce6e6b4381e6d7f73802e8d669c70eda70c3e230377b
SSDEEP

3072:9q0XMbldZTqxLf4dObSGVoh2Zl7UnIBU32xsEV0q4E4MBhG:kNdZT4Lf0Od+2Zl7rBU3tvzE4G

Score

N/A

Malware Config

Signatures

Files

f48d5dc7675fc90200c3f6feb2b9ab052e3573cadd21dbf3bf5d4c3b51b10a57
.dll windows x86

fcf1c229468315ba433f8589f875a558

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommBreak
PostQueuedCompletionStatus
ReadDirectoryChangesW
UnlockFileEx
GetStdHandle
GetDiskFreeSpaceExW
GetAtomNameA
GetConsoleInputExeNameA
UTUnRegister
OpenConsoleW
GetFileAttributesExW
FindNextFileW
FreeLibrary
Process32First
FindResourceA
InterlockedCompareExchange
LoadLibraryExW
WriteConsoleOutputA
GetHandleInformation
GetPrivateProfileSectionNamesW
SetConsoleCP
GetEnvironmentVariableA
GetConsoleKeyboardLayoutNameW
SetTimerQueueTimer
EnumDateFormatsA
ReleaseMutex
OpenJobObjectA
DeleteFiber
CreateFileMappingA
GetPrivateProfileIntW
CreateEventA
HeapAlloc
WriteConsoleInputA
GetModuleFileNameA
GetCommConfig
UpdateResourceW
ExitVDM
CloseHandle
DeleteVolumeMountPointA
ResumeThread
LocalSize
GetConsoleDisplayMode
ExpungeConsoleCommandHistoryW
GlobalWire
DeleteCriticalSection
WideCharToMultiByte
EnumDateFormatsExA
SetThreadLocale
WriteTapemark
EnumTimeFormatsA
GetComputerNameA
GetSystemDefaultLCID
GetModuleHandleA
Thread32First
WriteFileGather
EnumSystemLocalesA
GetTimeFormatA
SearchPathA
RegisterWowBaseHandlers
IsBadReadPtr
GetConsoleAliasExesW
GetLocalTime
MulDiv
GetProfileIntW
FlushViewOfFile
GetProcessHeaps
_lwrite
GetConsoleCommandHistoryW
MapViewOfFile
BuildCommDCBAndTimeoutsA
FindFirstChangeNotificationW
EnumDateFormatsW
VerLanguageNameA
FindNextVolumeA
GetSystemInfo
CreateMutexW
GetConsoleAliasExesA
VDMOperationStarted
GetUserDefaultLangID
DefineDosDeviceA
IsValidLocale
SetPriorityClass
GetVersion
SetSystemPowerState
ReadConsoleInputW
IsProcessorFeaturePresent
VerLanguageNameW
FindFirstVolumeW
GetFileAttributesExA
VirtualAlloc
GetProcAddress
LoadLibraryA
GetSystemTime

user32

LoadKeyboardLayoutA
CreateCursor
EndMenu
GetWindowDC
CreateIcon
GetUpdateRect
GetKeyboardType
GetSystemMenu
OpenDesktopW
EndDeferWindowPos
ShowWindowAsync
ExitWindowsEx
CopyRect
IsClipboardFormatAvailable
GetShellWindow
MessageBoxW
LoadCursorA
SetSystemCursor
DdeDisconnect
ShowCursor
SetClassWord
BringWindowToTop
AllowSetForegroundWindow
DlgDirSelectComboBoxExW
GetDlgItemTextW
IMPGetIMEA
GetScrollPos
SetWindowsHookA
DestroyIcon
SubtractRect
SetRect
DrawStateA
GetCursor
SetTimer
SetDeskWallpaper
GetClientRect
SendMessageA
SendNotifyMessageW
DeleteMenu
GetWindowInfo
GetSystemMetrics
SetWindowWord
MessageBoxA
CreatePopupMenu
DrawFrame
GetDC
UnregisterHotKey
MapVirtualKeyExA
PaintDesktop
GetKeyboardLayoutList
DdeConnectList
DdeCreateStringHandleW
GetLastActivePopup
CreateWindowExW
SetMenuInfo
CreateIconFromResource
GetClassInfoExA
CharPrevExA
SetCaretPos
CharToOemBuffW
ReleaseCapture
SetCursorPos
GetListBoxInfo
DispatchMessageW
CallWindowProcW
EnumChildWindows
TrackMouseEvent
DrawCaption
GetTopWindow
MonitorFromPoint

gdi32

DeleteDC
GetNearestColor
SetROP2
CreatePolyPolygonRgn
AddFontResourceW
GdiGetSpoolFileHandle
RemoveFontResourceA
CloseMetaFile
GetCharWidthA
DPtoLP
CopyEnhMetaFileW
CombineRgn
GetEnhMetaFileHeader
CreateRoundRectRgn
GetEnhMetaFileDescriptionA
CreateCompatibleBitmap
EndPath
EnumFontFamiliesExW
GetGlyphOutlineA
SetFontEnumeration
GetICMProfileW
SetPixelFormat
ScaleWindowExtEx
EndDoc
GetTextCharacterExtra
CreateBitmap
CreateMetaFileW
GetGlyphIndicesA
CopyMetaFileW
CreateDIBSection
Pie
GetEnhMetaFileA
GetTextExtentExPointA
RectInRegion
CreateEllipticRgn
SetPixelV
DeleteEnhMetaFile
GetLogColorSpaceW
AddFontResourceA
SaveDC
GetTextExtentPoint32W
CreateBitmapIndirect
FillRgn
GetDCPenColor
GetStockObject
CreateCompatibleDC
GetObjectType
GdiSetBatchLimit
GetRgnBox
CreateEnhMetaFileW
CreateFontIndirectW
DeviceCapabilitiesExA
UpdateICMRegKeyW
GetObjectA
SelectObject
GetTextFaceA
GetDIBits

version

VerFindFileA
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerInstallFileW
VerInstallFileA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoW
VerFindFileW

winmm

sndPlaySoundW
joyGetDevCapsA
mmTaskYield
waveInGetID
timeGetTime
midiOutLongMsg
waveInGetErrorTextA
timeBeginPeriod
mciGetCreatorTask
midiDisconnect
timeGetSystemTime
wod32Message
waveOutPrepareHeader
mciGetDriverData
midiInGetDevCapsA
mmioOpenW
waveInStart
CloseDriver
mixerGetLineInfoW
mixerGetLineControlsA
PlaySoundA
mmioCreateChunk
midiInPrepareHeader
mmioClose
waveOutClose
mmioStringToFOURCCW
mixerClose
mciGetYieldProc
midiInStart
mmioRenameW
waveInPrepareHeader
mixerGetControlDetailsW
auxGetNumDevs
mod32Message
mmioOpenA
midiInAddBuffer
timeKillEvent
mixerGetControlDetailsA
waveInGetPosition
waveInUnprepareHeader
joyConfigChanged
midiOutUnprepareHeader
mixerGetID
midiInStop
SendDriverMessage
waveOutGetDevCapsW
mmioSetBuffer
mciGetDeviceIDW
joyGetPos
waveOutBreakLoop
mciSetDriverData
WOW32DriverCallback
waveOutWrite
aux32Message
waveInMessage
GetDriverModuleHandle
mciGetDeviceIDA
waveInClose
midiStreamOpen
mmGetCurrentTask
midiOutGetID
midiInMessage
waveOutPause
waveInStop
DriverCallback
mciDriverNotify
auxSetVolume
waveOutSetVolume
mciGetErrorStringW
mixerOpen
midiInGetErrorTextW
midiConnect
midiOutSetVolume
midiOutGetDevCapsA
joyGetPosEx
waveOutGetNumDevs
midiInReset
waveOutSetPitch
auxGetDevCapsW
mmioSeek
NotifyCallbackData
midiOutGetVolume
mmTaskCreate
mciSendCommandA
midiOutPrepareHeader
WOWAppExit
midiInGetID
midiStreamPosition
DrvGetModuleHandle
midiOutOpen
midiOutGetNumDevs
waveOutGetVolume
waveOutGetPosition
mid32Message
joySetCapture
midiOutGetErrorTextW
waveOutGetErrorTextW
auxGetVolume
waveInGetNumDevs
mmDrvInstall
joy32Message
midiInGetErrorTextA

msvcrt

_timezone
asctime
_kbhit
_mbscat
ferror
_ismbcdigit
_getdrive
_tell
_wexecl
asin
__iscsymf
scanf
div
_chsize
_strset
iswcntrl
_open_osfhandle
_execle
_wutime
fflush
_wcsrev
strftime
_ismbstrail
_wexecv
_wstrdate
_wfdopen
fclose
__setusermatherr
swprintf
_adj_fdiv_m16i
_mbsstr
ftell
_fdopen
_wsearchenv
_c_exit
memcpy
_ismbcalnum
_pctype
fopen
_flsbuf
_lsearch
iswprint
sprintf
__lconv_init
_atoldbl
_wspawnlp
_cprintf
__p___initenv
_wcsdup
wcscmp
_atodbl
_wctime
printf
_getws
feof
strtod
_mbsninc
_strdup
_wfreopen
_getdcwd
_msize
_wputenv
_wunlink
strcmp
fprintf
_mbscmp
_mbsnbset
_mbspbrk
_mbsnbicmp
_mbslen
_unlink
_ltoa
fwrite
_fileno
_wfindfirsti64
fwprintf
toupper
strrchr
fputs
_ismbckata
fsetpos
_ismbbkprint
_set_error_mode
_popen
_wfopen
_wasctime
memset
_mbcasemap
_wtempnam
fseek
fputc
frexp
_mbsnbcpy
_fstat
_putws
fread
_heapadd
_mbsnbicoll
_spawnle
_finite
_strerror
_mbcjistojms
strtok
_statusfp
_getmbcp
_osver
_heapwalk
_getw
_adj_fdiv_m32

Exports

Exports

Gqbdfejcpq
Hrkb
Krig
Opsth
Yqohs
Yqppcdyqj

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcf1c229468315ba433f8589f875a558

Headers

File Characteristics

Imports

kernel32

user32

gdi32

version

winmm

msvcrt

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 6KB