db7df618c47b0153f57bbcc14b1bfd892ebb0e932fe37bc5716ef50bbbf28582

Sharing

Copy URL

Twitter E-mail

General

Target

db7df618c47b0153f57bbcc14b1bfd892ebb0e932fe37bc5716ef50bbbf28582
Size

409KB
MD5

0ea11abe07e15b147fc8b9ca5f4224d9
SHA1

505276e45b1a3d0f4ff330b0f69f3188645cf95b
SHA256

db7df618c47b0153f57bbcc14b1bfd892ebb0e932fe37bc5716ef50bbbf28582
SHA512

91eb30902250597acad3d7a1d21d9169763ccd3ac654d48f0d5c8e48c3274bfc36536040506bb23b2cbe4384ea9ec28bd26437e77da4ebecc1c52d80c39a243e
SSDEEP

12288:MEUqrbLsWX2FL7cDlLBnNDOXmrtYvxwlPgL9n:KGLdUL7AnNtYvxwlK

Score

N/A

Malware Config

Signatures

Files

db7df618c47b0153f57bbcc14b1bfd892ebb0e932fe37bc5716ef50bbbf28582
.dll windows x86

c052fa8184dabee9536cd23f7ead9781

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegNotifyChangeKeyValue
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA

kernel32

GetSystemTimeAsFileTime
GetTickCount
GlobalReAlloc
InitializeCriticalSection
InterlockedCompareExchange
InterlockedExchange
IsProcessorFeaturePresent
LoadLibraryA
LockResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
ReadFile
ReadFileScatter
RequestWakeupLatency
ResetWriteWatch
RtlUnwind
SetUnhandledExceptionFilter
SwitchToThread
TerminateProcess
TryEnterCriticalSection
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteFile
_lclose
GetProcessPriorityBoost
GetProcessAffinityMask
GetProcAddress
GetModuleHandleA
GetLastError
GetFullPathNameW
GetFileSizeEx
GetFileSize
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCommandLineA
FreeLibrary
FlushViewOfFile
FindResourceW
ExitProcess
EnterCriticalSection
DebugBreak
CreateMutexA
CreateFileA
CloseHandle
CancelWaitableTimer

gdi32

TranslateCharsetInfo
SetTextColor
SetMapMode
MoveToEx
GetTextMetricsW
GetTextMetricsA
GetObjectW
GetObjectA
GetFontLanguageInfo
GetCharacterPlacementW
GetCharacterPlacementA
GdiGetDC
ExtTextOutW
ExtTextOutA
EudcLoadLinkW
DeleteDC
CreatePolygonRgn
CreateFontIndirectW
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC

ole32

CreateStreamOnHGlobal

msvcrt

_lock
qsort
_CIacos
_CIasin
_CIatan
_CIatan2
_CIcos
_CIsin
_CIsqrt
_CxxThrowException
_XcptFilter
__p___argv
_amsg_exit
_controlfp
_finite
_fstati64
_initterm
_isnan
_onexit
_purecall
_stricmp
_unlock
_vsnprintf
_vsnwprintf
floor
iswalpha
iswdigit
iswpunct
iswspace
malloc
memcpy
memmove
memset

Exports

Exports

CreateDSObject
DeleteMarkerIndex
EnumAttributes
SetLoadResolution
SetProgress
SetSingleItemA
mpegInSleepFiles

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 209KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c052fa8184dabee9536cd23f7ead9781

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 209KB - Virtual size: 209KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 209KB - Virtual size: 209KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 3KB - Virtual size: 3KB