92c5ffef9f5ab165aa4441395cd518b5fd8094bc6b231eca782b88ea3c488d78

Sharing

Copy URL

Twitter E-mail

General

Target

92c5ffef9f5ab165aa4441395cd518b5fd8094bc6b231eca782b88ea3c488d78
Size

332KB
MD5

1132b53168c3687b8583d155dfa2d77a
SHA1

08b4fac1af1799efb9121b49170eb032ce46cead
SHA256

92c5ffef9f5ab165aa4441395cd518b5fd8094bc6b231eca782b88ea3c488d78
SHA512

a4c570c03d6a6085f848f1d8d7d8c733a169acaa0261345abc841690e9e880eccde6cb6665612d506f4b327dc2246648c834405264abcb53ebd98043a3f73098
SSDEEP

6144:keMSB+bSPNqYx1tgyY7fR5hWCvorsatRVF/beTx4OCsmD7y+HhHeNBQ0Vw5:kpSecqKgzZ7atd0NDey+2BQ2w5

Score

N/A

Malware Config

Signatures

Files

92c5ffef9f5ab165aa4441395cd518b5fd8094bc6b231eca782b88ea3c488d78
.dll windows x86

d59133ee99139623a0c395e92cb9f82a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellHookProc
SHGetSpecialFolderLocation
SHGetFolderPathW
SHFreeNameMappings
SHFormatDrive
DragFinish

oleaut32

VarUI2FromDate
VarUI1FromStr
VarUI1FromDate
VarR8FromDate
VarCyFromUI2
SafeArrayDestroyData

kernel32

HeapFree
SizeofResource
SetPriorityClass
SetEvent
QueryPerformanceCounter
PurgeComm
lstrlenA
lstrcpynA
lstrcmpiA
lstrcmpA
WriteFileEx
WideCharToMultiByte
VirtualProtect
VirtualFree
CancelDeviceWakeupRequest
DeleteTimerQueueTimer
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeLibrary
GetACP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetExitCodeProcess
GetFileSizeEx
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetProcessHeap
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GlobalAlloc
GlobalHandle
ProcessIdToSessionId
InitializeCriticalSection
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidLocale
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalFlags
LocalShrink
Module32First
MulDiv
MultiByteToWideChar
VirtualAlloc

odbc32

LockHandle
ord72
ord12
SearchStatusCode
GetODBCSharedData

Exports

Exports

CreateCubeTextureFromFileA
GetImageInfoFromFileInMemory
mpegInOpenTSStream

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d59133ee99139623a0c395e92cb9f82a

Headers

File Characteristics

Imports

shell32

oleaut32

kernel32

odbc32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 134KB - Virtual size: 134KB

.data Size: 66KB - Virtual size: 66KB

.rsrc Size: 62KB - Virtual size: 62KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 134KB - Virtual size: 134KB

.data
Size: 66KB - Virtual size: 66KB

.rsrc
Size: 62KB - Virtual size: 62KB

.reloc
Size: 4KB - Virtual size: 3KB