359f57fef1b9054813fee91492ac8ea6c98a38f9edfe25a631761d75d80ebc34

Sharing

Copy URL

Twitter E-mail

General

Target

359f57fef1b9054813fee91492ac8ea6c98a38f9edfe25a631761d75d80ebc34
Size

103KB
MD5

34e23441833d95de8778d08db758018b
SHA1

c8f1baa7e80c9be6b5e082315e79e74c4051d0c5
SHA256

359f57fef1b9054813fee91492ac8ea6c98a38f9edfe25a631761d75d80ebc34
SHA512

77d871b96b0c8d772913a289fe0ca36ec8ca74324f93f83bd3aeb55c6155bb32bf8ed4ebe9714f565e44eeeca11ae5ddf46a0432bf1a942b76f0dfa219b00c85
SSDEEP

3072:Yhaan/WNjh8lkcn/28Jl7FZMKN0o9W629fx8:zaneOk228JbPusf25x

Score

N/A

Malware Config

Signatures

Files

359f57fef1b9054813fee91492ac8ea6c98a38f9edfe25a631761d75d80ebc34
.dll windows x86

baef336e26d147e7fe769530b1f497d8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
GetProcAddress
lstrlenA
GetCurrentThreadId
FormatMessageW
LocalAlloc
LocalFree
ExpandEnvironmentStringsW
lstrlenW
MultiByteToWideChar
GetLocalTime
WideCharToMultiByte
GetWindowsDirectoryA
SearchPathW
FindResourceExW
SetLastError
LoadLibraryExW
MapViewOfFile
CreateFileMappingW
CreateFileW
GetVersionExW
GetLocaleInfoW
UnmapViewOfFile
FormatMessageA
CloseHandle
InterlockedCompareExchange
FreeEnvironmentStringsW
TerminateProcess
WaitForSingleObject
InterlockedExchange
CreateThread
InterlockedIncrement
InterlockedDecrement
GetComputerNameA
WriteFile
ReadFile
DeviceIoControl
ExpandEnvironmentStringsA
CreateDirectoryA
LoadLibraryA
GetCurrentThread
GetTickCount
GetPrivateProfileIntA
CreateFileA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GlobalFree
GetModuleHandleA
DisableThreadLibraryCalls
GetProcessHeap
HeapAlloc
HeapFree
FreeEnvironmentStringsA
SetEnvironmentVariableW
DebugBreak
GetExitCodeThread
GetCurrentProcess
InitializeCriticalSection
FreeLibrary
LoadLibraryExA
Sleep
RtlUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
GetUserDefaultLangID
LoadLibraryW
DeleteCriticalSection
GetUserDefaultLCID
GetLocaleInfoA
GetVersionExA
GetCommandLineA
GetLastError
VirtualProtect

user32

IsWindowVisible
CharNextA
EnumThreadWindows
wsprintfA
wvsprintfA
PostMessageA
MessageBoxA
SetFocus
LoadStringW
SendMessageTimeoutW
LoadStringA
GetWindowThreadProcessId
SetForegroundWindow
AttachThreadInput
GetDesktopWindow
IsWindowEnabled
GetWindowTextA
GetWindowTextLengthA
GetWindowTextW
GetWindowTextLengthW
FindWindowA
FindWindowW
GetWindow
keybd_event
VkKeyScanA
SendMessageTimeoutA

advapi32

RegSetValueExA
RegQueryInfoKeyW
RegEnumValueW
RegEnumValueA
RegQueryInfoKeyA
RegDeleteValueA
RegEnumKeyExA
RegCreateKeyExA
RegCloseKey
RegisterEventSourceW
ReportEventW
DeregisterEventSource
RegDeleteKeyA
RegQueryValueExA
EqualSid
GetTokenInformation
OpenProcessToken
OpenThreadToken
FreeSid
AllocateAndInitializeSid
RegCreateKeyExW
RegSetValueExW
RegOpenKeyExA

ole32

CoTaskMemFree
StringFromCLSID

msvcrt

fopen
_ismbcdigit
_ismbcspace
fclose
wcsncmp
bsearch
_onexit
_lock
__dllonexit
_unlock
_adjust_fdiv
_amsg_exit
_initterm
_callnewh
_CxxThrowException
_wcsicmp
_ultoa
memset
fwrite
strncpy
__RTtypeid
wcscmp
_ultow
_wtoi
wcslen
fprintf
memcpy
_errno
_vsnwprintf
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler
time
_except_handler3
_XcptFilter
malloc
free
_snprintf
_itoa
_vsnprintf

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

baef336e26d147e7fe769530b1f497d8

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

msvcrt

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 2KB - Virtual size: 35KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 2KB - Virtual size: 35KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 4KB