b96ebe5dbf5cc9636cce61b1e77cccd44c0c41c27b1abb187bdf28e74c92a47a

Sharing

Copy URL Twitter E-mail

General

Target

b96ebe5dbf5cc9636cce61b1e77cccd44c0c41c27b1abb187bdf28e74c92a47a
Size

400KB
MD5

cfe33e486ca4cc24b7a8a4b6d3a7e694
SHA1

7a63e51f50279ac9cc3e27e935361093a8150a85
SHA256

b96ebe5dbf5cc9636cce61b1e77cccd44c0c41c27b1abb187bdf28e74c92a47a
SHA512

b8ab15b2e76ccb5eb2fde8bba4a0e1e5d93374a76d5ae6a34670d9abdc322a8be33ec629d9a17687a02b711ae1b060c55f9c0a846f518953e9e5aefc36ffdf70
SSDEEP

6144:cvuQ/ltV6clFK8zKXxNOpCUfGArvytbsQ2xW+vFi1z0QSgsozsQJka5NJ:y/3UcJ/GdtOnF60QSgsohJ95T

Score

N/A

Malware Config

Signatures

Files

b96ebe5dbf5cc9636cce61b1e77cccd44c0c41c27b1abb187bdf28e74c92a47a
.dll windows x86

9e3830d7d73967773e3c3b2e0f30d991

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetOEMCP
RtlUnwind
RaiseException
GetCommandLineA
TerminateProcess
CreateThread
ExitThread
GetTimeZoneInformation
GetSystemTime
GetACP
SetUnhandledExceptionFilter
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetProcessVersion
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
WritePrivateProfileStringA
GlobalFlags
GetFileTime
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalFree
GlobalFree
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
SuspendThread
SetThreadPriority
SetEvent
GlobalLock
GlobalAlloc
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
lstrcmpiA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
LoadLibraryA
GetProcAddress
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
SetLastError
lstrcpynA
lstrcmpA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
GetTempPathA
FindResourceA
LoadResource
LockResource
SizeofResource
WaitForSingleObject
ResumeThread
InterlockedIncrement
WaitForMultipleObjects
HeapSize
GlobalUnlock
GlobalReAlloc
GetLocalTime
DeleteCriticalSection
ExitProcess
InitializeCriticalSection
GetModuleFileNameA
GetFileAttributesA
GetLastError
SetFilePointer
SetEndOfFile
GetFileSize
SetupComm
SetCommState
CreateFileA
CreateEventA
SetCommMask
GetCommState
Sleep
WaitCommEvent
CloseHandle
WriteFile
ReadFile
ClearCommError
OutputDebugStringA
HeapFree
HeapReAlloc
GetProcessHeap
HeapAlloc
FreeEnvironmentStringsW
InterlockedDecrement

user32

GetSysColorBrush
DestroyMenu
UnregisterClassA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
ReleaseDC
GetDC
ClientToScreen
ShowWindow
SetWindowTextA
LoadIconA
MapWindowPoints
SetFocus
AdjustWindowRectEx
CopyRect
PtInRect
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
PostMessageA
wvsprintfA
wsprintfA
EnableWindow
LoadBitmapA
GetSysColor
GetWindowPlacement
GetWindowRect
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetClassNameA
LoadStringA
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetClientRect
LoadCursorA
MessageBoxA
SetWindowLongA
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
SendMessageA
PostQuitMessage
GetSystemMetrics
CharUpperA
UnhookWindowsHookEx
GetWindowLongA
GetPropA

gdi32

DeleteObject
GetDeviceCaps
ScaleWindowExtEx
SetTextColor
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetClipBox
CreateBitmap
CreateCompatibleDC
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
BitBlt
CreateCompatibleBitmap
CreatePen
CreateSolidBrush
Rectangle
GetObjectA
SetBkColor

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

comctl32

ord17

ole32

StringFromIID
CoTaskMemFree
CoCreateInstance

oleaut32

SysFreeString
SysAllocStringByteLen
SysStringByteLen
SysAllocString
VariantClear

avifil32

AVIFileInit
AVIStreamReadFormat
AVIFileExit
AVIStreamRelease
AVIStreamRead
AVIStreamSetFormat
AVIFileRelease
AVIFileCreateStreamA
AVIFileOpenA
AVIStreamOpenFromFileA
AVIStreamWrite

Exports

Exports

GetNewInf

Sections

.text
Size: 112KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 220KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e3830d7d73967773e3c3b2e0f30d991

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

ole32

oleaut32

avifil32

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 110KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 20KB - Virtual size: 80KB

.rsrc Size: 220KB - Virtual size: 217KB

.reloc Size: 20KB - Virtual size: 17KB

.text
Size: 112KB - Virtual size: 110KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 20KB - Virtual size: 80KB

.rsrc
Size: 220KB - Virtual size: 217KB

.reloc
Size: 20KB - Virtual size: 17KB