29d8bec0479e6603c33665853410a107963945458e984a543024401d84d18fd0

Sharing

Copy URL Twitter E-mail

General

Target

29d8bec0479e6603c33665853410a107963945458e984a543024401d84d18fd0
Size

88KB
MD5

6d0f97fe4df7d23aeaa406b630e65db4
SHA1

eb5668ebb57cbda3d8c0ec79f08a81129815679d
SHA256

29d8bec0479e6603c33665853410a107963945458e984a543024401d84d18fd0
SHA512

f8263ce5c440572e6b99ccad35e8dceb4dc439724c4b509eebbebd0348721ee1bb46a94b0bb0ef6808fa4866b8d7fc54843058f3530d97622f86cf7604cfdf81
SSDEEP

1536:dDEiqySTU0LAg7Cvj4F42YD4/VrJbOgfuoqqBCviEg5po:yizSTUU17Yj4F1K4dJbOgfMaaOo

Score

N/A

Malware Config

Signatures

Files

29d8bec0479e6603c33665853410a107963945458e984a543024401d84d18fd0
.dll windows x86

c1d60bbd7a239780e24538260641793d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapValidate
CreateIoCompletionPort
GetComputerNameW
SetCurrentDirectoryA
SetCommState
GetProfileIntA
lstrcatA
ReplaceFileW
GetDiskFreeSpaceW
ClearCommBreak
GetTimeZoneInformation
FreeResource
WaitNamedPipeA
FlushViewOfFile
FindFirstFileA
GetCPInfo
LCMapStringW
GetStdHandle
GetCurrentThreadId
OpenThread
WaitForMultipleObjectsEx
lstrcmpiA
CreateTimerQueue
FormatMessageW
GetCommMask
SetVolumeMountPointW
IsValidLanguageGroup
TerminateThread
DeleteTimerQueue
SetupComm
IsBadHugeReadPtr
CreateTimerQueueTimer
CreateWaitableTimerA
ReadFile
EnumResourceLanguagesW
WriteConsoleW
ExitThread
VerifyVersionInfoA
GlobalFindAtomW
Beep
lstrcpynA
SuspendThread
GetEnvironmentVariableA
GetTempPathA
GetThreadContext
WaitCommEvent
SetFileTime
SetProcessWorkingSetSize
GetProfileStringA
GetCommProperties
FindFirstChangeNotificationW
EnumUILanguagesW
SwitchToThread
VerifyVersionInfoW
GetCurrencyFormatA
LCMapStringA
ExpandEnvironmentStringsA
GetBinaryTypeA
ReleaseActCtx
GetVolumeInformationW
SetTimeZoneInformation
SetDefaultCommConfigW
ActivateActCtx
WaitNamedPipeW
HeapLock
CreateNamedPipeA
RegisterWaitForSingleObjectEx
GetLargestConsoleWindowSize
GetWindowsDirectoryA
AssignProcessToJobObject
FindNextChangeNotification
FindNextFileA
FlushConsoleInputBuffer
CreateFileA
UnmapViewOfFile
HeapFree
Sleep
EnterCriticalSection
GetLastError
CloseHandle
SetLastError
GetVolumeInformationA
CreateFileMappingA
CopyFileA
LoadLibraryA
MapViewOfFile
InterlockedCompareExchange
WriteFile
lstrlenW
GetCommandLineA
CreateDirectoryA
GetProcAddress
SetCommBreak
GetModuleHandleA

ole32

CoAddRefServerProcess
OleCreateStaticFromData
OleSaveToStream
OleLoad
CoCreateGuid
SetConvertStg
OleCreate
CoCreateInstance
StgIsStorageILockBytes
StgOpenStorage
OleRegGetMiscStatus
OleRun
OleQueryLinkFromData
CoDisableCallCancellation
CoUninitialize

shlwapi

SHDeleteValueW
PathCreateFromUrlW
SHRegGetUSValueW
SHSetValueA
SHCreateShellPalette
StrCatBuffW
PathCommonPrefixW
PathUnquoteSpacesW
wnsprintfA
StrCatW
SHGetValueW
StrToIntA
PathSetDlgItemPathW
PathGetCharTypeW
StrToIntExW
PathMakePrettyW
PathAddExtensionW
UrlUnescapeW

gdi32

CloseFigure
GetViewportOrgEx
GetCharWidthW
EndPath
ResetDCA
GetTextColor
SetTextAlign
CreateDCW
ExtTextOutA
Chord
CreatePen
UnrealizeObject
CreateCompatibleDC
AbortPath
SetBitmapDimensionEx
SetWindowExtEx
GetTextFaceA
GetPixelFormat
GetTextExtentExPointW
GetWindowOrgEx
CreateFontW
EnumMetaFile
DescribePixelFormat
GetWorldTransform
GetMapMode
PolyPolyline
SetStretchBltMode
ArcTo
StartPage
SetMiterLimit
GetBrushOrgEx
SetArcDirection
SwapBuffers
SetMapMode
WidenPath
CreateFontA
CreateEnhMetaFileW
FlattenPath
CloseEnhMetaFile

Exports

Exports

MSNcfgRpl

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1d60bbd7a239780e24538260641793d

Headers

File Characteristics

Imports

kernel32

ole32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB