34347ae8d7682f824bcc794044358fa5105cf6bf845f673e1d70ec4f001e2480

Sharing

Copy URL

Twitter E-mail

General

Target

34347ae8d7682f824bcc794044358fa5105cf6bf845f673e1d70ec4f001e2480
Size

164KB
MD5

447f3640280a70b8c6595a846e2e17c7
SHA1

09635f05d71c904ef383b33824f26672e4ad376c
SHA256

34347ae8d7682f824bcc794044358fa5105cf6bf845f673e1d70ec4f001e2480
SHA512

751264c088375b88151dd7d0633ad37cb8eaca1b25f387e091f20747338f79683083efbded3f366ba5bfe91b721d900fd11d0f7c993a7de13605399f1def48f0
SSDEEP

1536:N7Me4OTwIzxofU0AHRvT1R8Aw+5PYl4O0iCI3CfddGFXlcMumVZHAbRP7N1lchpk:FGcxoftqXR1xfiTVcMuiAb9quJO9gL

Score

N/A

Malware Config

Signatures

Files

34347ae8d7682f824bcc794044358fa5105cf6bf845f673e1d70ec4f001e2480
.dll windows x86

65ca11c854a5ebe6cb2cc62f5abe2a9f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharPrevW
SendDlgItemMessageW
GetDlgItem
SetDlgItemTextW
SetDlgItemTextA
SetWindowTextW
SetWindowTextA
LoadCursorW
LoadCursorA
LoadIconW
LoadIconA
DialogBoxParamW
DialogBoxParamA
CreateDialogParamW
CreateDialogParamA
MessageBoxW
MessageBoxA
LoadImageW
LoadImageA
LoadAcceleratorsW
LoadAcceleratorsA
CreateWindowExW
CreateWindowExA
RegisterClassW
RegisterClassA
GetClassInfoW
GetClassInfoA
LoadMenuW
LoadMenuA
SendMessageW
SendMessageA
GetProcessWindowStation
GetUserObjectInformationW
LoadStringW
LoadStringA
GetMessageW
GetMessageA
IsDialogMessageW
IsDialogMessageA
SetWindowLongA
GetWindowLongA
TranslateAcceleratorW
TranslateAcceleratorA
DefWindowProcW
DefWindowProcA
GetClassNameW
GetClassNameA
PostMessageW
PostMessageA
DispatchMessageW
DispatchMessageA
PeekMessageW
PeekMessageA
GetWindowTextW
GetWindowTextA
SystemParametersInfoA
CallWindowProcA
GetWindowLongW
SetWindowLongW

kernel32

UnhandledExceptionFilter
FlushFileBuffers
GetLocaleInfoA
VirtualProtect
SetConsoleCtrlHandler
SetStdHandle
LCMapStringW
LCMapStringA
HeapSize
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
LocalAlloc
LocalFree
GetLastError
MultiByteToWideChar
GetSystemDirectoryA
GetSystemDirectoryW
GetWindowsDirectoryA
GetWindowsDirectoryW
FindNextFileA
FindNextFileW
GetCommandLineW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
ExitProcess
lstrlenW
GetModuleFileNameA
GetModuleFileNameW
GetVersionExA
GetVersionExW
GetComputerNameA
GetComputerNameW
WideCharToMultiByte
GetCPInfo
EnumResourceLanguagesW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetTempPathA
GetTempPathW
GetFullPathNameA
GetFullPathNameW
GetTempFileNameA
GetTempFileNameW
SetLastError
FindResourceA
FindResourceW
GetDiskFreeSpaceExA
GetDiskFreeSpaceExW
FindFirstChangeNotificationA
FindFirstChangeNotificationW
LoadLibraryExA
LoadLibraryExW
FormatMessageA
FormatMessageW
SearchPathA
SearchPathW
GetPrivateProfileIntA
RaiseException
GetPrivateProfileIntW
GetPrivateProfileStringA
GetPrivateProfileStringW
WritePrivateProfileStringA
WritePrivateProfileStringW
CloseHandle
GetFileType
CreateFileA
CreateFileW
CopyFileA
CopyFileW
MoveFileA
MoveFileW
DeleteFileA
MoveFileExW
DeleteFileW
GetDriveTypeA
GetDriveTypeW
GetVolumeInformationA
GetVolumeInformationW
CreateSemaphoreA
CreateSemaphoreW
CreateDirectoryA
CreateDirectoryW
RemoveDirectoryA
RemoveDirectoryW
GetDateFormatA
GetDateFormatW
FindClose
FindFirstFileA
FindFirstFileW
OutputDebugStringA
OutputDebugStringW
FatalAppExitA
FatalAppExitW
CreateMutexA
CreateMutexW
CreateEventA
CreateEventW
OpenEventA
OpenEventW
GetModuleHandleA
GetModuleHandleW
GetFileAttributesA
GetFileAttributesW
SetFileAttributesA
SetFileAttributesW
GetEnvironmentVariableA
GetEnvironmentVariableW
SetEnvironmentVariableA
SetEnvironmentVariableW
CreateFileMappingA
CreateFileMappingW
OpenFileMappingA
OpenFileMappingW
CreateProcessA
CreateProcessW
lstrcatW
lstrcpyW
FreeLibrary
GetProcAddress
OpenProcess
GetCurrentProcessId
GetSystemInfo
WriteFile
GetStdHandle
VirtualAlloc
VirtualQuery
GetProcessAffinityMask
GetCurrentProcess
GetCommandLineA
HeapFree
HeapAlloc
RtlUnwind
HeapReAlloc
TerminateProcess
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
DisableThreadLibraryCalls
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
IsBadWritePtr
GetACP
GetOEMCP
LoadLibraryA
InterlockedExchange

advapi32

RegisterEventSourceA
ReportEventW
DeregisterEventSource
LookupAccountNameW
LookupAccountNameA
LookupAccountSidW
LookupAccountSidA
CryptAcquireContextA
RegQueryValueExW
RegReplaceKeyW
RegReplaceKeyA
RegRestoreKeyW
RegRestoreKeyA
RegUnLoadKeyW
RegUnLoadKeyA
RegLoadKeyW
RegLoadKeyA
RegDeleteValueW
RegDeleteValueA
RegQueryValueW
RegQueryValueA
RegCreateKeyExW
RegCreateKeyExA
RegSetValueExW
RegSetValueExA
RegDeleteKeyW
RegDeleteKeyA
SetFileSecurityW
SetFileSecurityA
LookupPrivilegeValueW
LookupPrivilegeValueA
RegOpenKeyExW
RegOpenKeyExA
RegEnumValueW
RegEnumValueA
GetUserNameW
GetUserNameA
RegQueryValueExA
RegQueryInfoKeyW
RegQueryInfoKeyA
RegEnumKeyExW
RegEnumKeyExA
RegCloseKey

Exports

Exports

Install
Uninstall

Sections

.text
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65ca11c854a5ebe6cb2cc62f5abe2a9f

Headers

File Characteristics

Imports

user32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 80KB

.data Size: 64KB - Virtual size: 67KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 84KB - Virtual size: 80KB

.data
Size: 64KB - Virtual size: 67KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB