248719b082cd5dcd1adcf90ad0cb5c9b21e99a3aa455362a91337c7764f7cf2f

Sharing

Copy URL Twitter E-mail

General

Target

248719b082cd5dcd1adcf90ad0cb5c9b21e99a3aa455362a91337c7764f7cf2f
Size

59KB
MD5

52d8667cfc9e11e32aa4d5dedf9d1146
SHA1

735ccb1e0b9ec11cd209a0e0e01da5ee8d2bfe2d
SHA256

248719b082cd5dcd1adcf90ad0cb5c9b21e99a3aa455362a91337c7764f7cf2f
SHA512

ac6b5dbbea7573b65831f45f5972ca2dbaf5db2f36e8ba9e1d7bbf57abf3ffe776cb2a1d5056753fb987b40a080d276b912e6abf9ce2084ba3a5991ecafd94ce
SSDEEP

1536:uiUCva6kctduSAxt8u6lsVHWZTnBJwNoTGE:uOS6kcvcxYtBJE

Score

N/A

Malware Config

Signatures

Files

248719b082cd5dcd1adcf90ad0cb5c9b21e99a3aa455362a91337c7764f7cf2f
.dll windows x86

edca1e3a88b11de7be8c82be4a1175df

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
realloc
strncmp
toupper
free
malloc
gmtime
mktime

kernel32

lstrcpynA
GetProcAddress
WaitForMultipleObjects
ReadFile
VirtualAlloc
SetFileAttributesA
WriteFile
VirtualQuery
SetPriorityClass
GetFileSize
GlobalUnlock
GetCommandLineA
GetModuleHandleA
GetFileAttributesA
WritePrivateProfileStructA
CreatePipe
TerminateProcess
CloseHandle
lstrcatA
lstrlenW
WideCharToMultiByte
SetFilePointer
GetModuleFileNameA
MapViewOfFile
GetPrivateProfileStructA
VirtualUnlock
CreateFileMappingA
GetPrivateProfileStringA
GetPriorityClass
IsBadReadPtr
UnmapViewOfFile
GlobalLock
CopyFileA
GetCurrentProcessId
SetEndOfFile
WritePrivateProfileStringA
GetCurrentDirectoryA
VirtualLock
GlobalAlloc
GetComputerNameA
GetCurrentThread
GetCurrentProcess
CreateFileA
OpenProcess
LoadLibraryA
VirtualFree
WriteProcessMemory

compt142

_Eps
_Cosh
_Rteps
_Mbrtowc
_FSinh
_Toupper
_Poly
_Xbig
_FInf
_FDnorm
_FDtest
_FDscale
_FSnan
_Denorm
_Stof
_LExp
_FXbig
_Wcrtomb
_LDscale
_Snan
_Getcvt
_Inf
_LRteps

user32

SetWindowPos
GetWindowTextA
GetActiveWindow
SetClipboardData
ScreenToClient
KillTimer
OpenClipboard
GetParent
LoadBitmapA
DestroyCursor
CharLowerA
EmptyClipboard
AppendMenuA
LoadCursorA
IsZoomed
IsDlgButtonChecked
SetForegroundWindow
EnableMenuItem
GetSysColorBrush
GetWindowDC
SetClassLongA
wsprintfA
SendMessageA
CharUpperA
FindWindowA
SetMenuItemInfoA
MoveWindow
SetWindowLongA
SendDlgItemMessageA
CheckRadioButton

advapi32

LookupPrivilegeValueA
RegDeleteKeyA

gdi32

SetTextColor

comdlg32

GetSaveFileNameA

Exports

Exports

CreateProcessNotify
DllClientCleanup
cmdlmapi
DllClientStartup

Sections

.text
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

edca1e3a88b11de7be8c82be4a1175df

Headers

File Characteristics

Imports

msvcrt

kernel32

compt142

user32

advapi32

gdi32

comdlg32

Exports

Exports

Sections

.text Size: 50KB - Virtual size: 52KB

.rdata Size: 3KB - Virtual size: 4KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 50KB - Virtual size: 52KB

.rdata
Size: 3KB - Virtual size: 4KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB