980d771f7f53ab576483401cb2ed247e428ca34a6b8cfc4387642148ee0b78ed

Sharing

Copy URL

Twitter E-mail

General

Target

980d771f7f53ab576483401cb2ed247e428ca34a6b8cfc4387642148ee0b78ed
Size

567KB
MD5

4ad4a22a9d0018f638c1d578424fe540
SHA1

b4840a777249a90c2eecea85a6a808588d88ce2b
SHA256

980d771f7f53ab576483401cb2ed247e428ca34a6b8cfc4387642148ee0b78ed
SHA512

d33cab2b6f6ea9c759647f442304b8df8ec974b5fb3c9a81e12ab516ab8f1b180c2a5a097867fbe76d5773c8a775675acee27a4ae03bb7f9dfbfcb96a76d3593
SSDEEP

12288:i/myf2AZF+8LlIVpvvL9QVF6QwHFtB09+:QfZZFZL8vWFYHrm9+

Score

N/A

Malware Config

Signatures

Files

980d771f7f53ab576483401cb2ed247e428ca34a6b8cfc4387642148ee0b78ed
.dll windows x86

2fa3605a9f62ab10c68cb1c12cbfb7a3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GlobalAlloc
GlobalLock
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
GetACP
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
IsDebuggerPresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
SetHandleCount
SetLastError
SizeofResource
Sleep
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection

ole32

CoTaskMemAlloc
CoTaskMemFree
CoTaskMemRealloc
CoUninitialize
CoInitialize
CoCreateInstance

user32

IsWindowVisible
IsZoomed
MoveWindow
RegisterClipboardFormatA
SetFocus
IsIconic
ShowWindow
UnhookWindowsHookEx
CharNextA
CallNextHookEx
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetParent
GetForegroundWindow
DestroyWindow
CreateDialogParamA
SetWindowsHookExA
CharNextW

advapi32

RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA

oleaut32

RegisterTypeLi
SysAllocString
SysFreeString
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
VariantClear
LoadTypeLi

Exports

Exports

AddModule
GetIndicesEx
InPlaceMultiply
InteractLoop
SetFromWindowsErr
_InPlaceConcat
set_palette_to_rgb
vGetOptions

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 333KB - Virtual size: 333KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2fa3605a9f62ab10c68cb1c12cbfb7a3

Headers

File Characteristics

Imports

kernel32

ole32

user32

advapi32

oleaut32

Exports

Exports

Sections

.text Size: 103KB - Virtual size: 103KB

.rdata Size: 333KB - Virtual size: 333KB

.data Size: 106KB - Virtual size: 107KB

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 103KB - Virtual size: 103KB

.rdata
Size: 333KB - Virtual size: 333KB

.data
Size: 106KB - Virtual size: 107KB

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 5KB - Virtual size: 5KB