43d9535e44764e67d16bb5b376f4719b5e58355af421a3afce5307a65c88cedc

Sharing

Copy URL Twitter E-mail

General

Target

43d9535e44764e67d16bb5b376f4719b5e58355af421a3afce5307a65c88cedc
Size

48KB
MD5

6e48d1d89c560c74e8ee9e973c52388f
SHA1

ff5d3b134796a42c365bd2c397084c40ba0a313d
SHA256

43d9535e44764e67d16bb5b376f4719b5e58355af421a3afce5307a65c88cedc
SHA512

28f89fee5234d5557a8e656a30f34902ad4ec30660c547f5ce66af3a6d0bdd5d47b192ad1bcb43ba65142b6b74a5e1db1e613d54fde88700ba3ae6115c9e4e7b
SSDEEP

768:N38cUkre0VMz3Kz0HIqPcrGsLrgN9MAI1wESgmiFgvdOXLO4030YjTf+t10P:N360AsH10g44bf

Score

N/A

Malware Config

Signatures

Files

43d9535e44764e67d16bb5b376f4719b5e58355af421a3afce5307a65c88cedc
.exe windows x86

92d0f289d68288863962d0a25ca9a62d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ntdll

NtFindAtom

gdi32

SetTextColor
CreateSolidBrush
DeleteObject
PatBlt
SelectObject
GetDeviceCaps
IntersectClipRect
BitBlt
ExtTextOutW
SetBkMode
GetTextExtentPointW
CreateCompatibleDC
SetBkColor
CreateDIBitmap
DeleteDC

ws2_32

WSAGetLastError

kernel32

LeaveCriticalSection
SizeofResource
GlobalDeleteAtom
GetEnvironmentVariableW
LoadResource
GetModuleHandleA
lstrcmpW
GlobalAddAtomW
VirtualAlloc
GetProcAddress
GetSystemDirectoryW
lstrlenW
GlobalAlloc
GetVersion
FindResourceW
lstrcmpiW
GetProfileStringW
EnterCriticalSection
GetCurrentThreadId
GlobalFree
GetModuleFileNameW
InitializeCriticalSection

user32

ExcludeUpdateRgn
InflateRect
EndPaint
GetWindowDC
IsWindowEnabled
GetWindowRect
DrawFocusRect
RemovePropW
GetClassInfoW
CallWindowProcW
DrawTextW
ShowCaret
ReleaseDC
IntersectRect
SetWindowLongA
GetParent
GetFocus
CallNextHookEx
UnhookWindowsHookEx
GetWindow
GetWindowLongW
DefWindowProcW
CharPrevW
IsWindowUnicode
GetPropW
DefDlgProcW
GetClientRect
SetWindowsHookExW
GetSystemMetrics
ScreenToClient
InvalidateRect
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
HideCaret
MapWindowPoints
ClientToScreen
ValidateRect
GetSysColor
GetDC
SendMessageW
BeginPaint
OffsetRect
IsIconic
MessageBoxA
CharNextW
SetPropW
GetClassNameW

adsldpc

ADsFreeColumn

Sections

.textbss
Size: - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

92d0f289d68288863962d0a25ca9a62d

Headers

File Characteristics

Imports

ntdll

gdi32

ws2_32

kernel32

user32

adsldpc

Sections

.textbss Size: - Virtual size: 1.3MB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 512B - Virtual size: 448B

.idata Size: 45KB - Virtual size: 45KB

.textbss
Size: - Virtual size: 1.3MB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 512B - Virtual size: 448B

.idata
Size: 45KB - Virtual size: 45KB