19a56852ee8d2ff305886d0384534fd8519d4c82116aca60c79edb5f5291a9f3

Sharing

Copy URL

Twitter E-mail

General

Target

19a56852ee8d2ff305886d0384534fd8519d4c82116aca60c79edb5f5291a9f3
Size

120KB
MD5

fe56c57a158a6cae6a29986aa86a6aa8
SHA1

d5c1f39ab6dd6723dfd83f36c253fa242770aebe
SHA256

19a56852ee8d2ff305886d0384534fd8519d4c82116aca60c79edb5f5291a9f3
SHA512

6875d7b75e6497f1ac15676f90a6c1158acf61c34bdb2aa644dc74f33c1b556b40b8bd3fc03a9be290f2d502c366325a93438e6aaf0e1d8b9a0aabd1ab311066
SSDEEP

3072:Q7HvvTTI3/mtiJvBeRUInn09BCimczxq1i4gPr3a:63TTIvmtic0J3zx4iF3

Score

N/A

Malware Config

Signatures

Files

19a56852ee8d2ff305886d0384534fd8519d4c82116aca60c79edb5f5291a9f3
.dll windows x86

b16d61e1425d751416f670cc7cf0a19c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
FreeLibrary
GetProcAddress
LoadLibraryA
InterlockedExchange
ExpandEnvironmentStringsA
GetFullPathNameA
GetDriveTypeA
SearchPathA
lstrlenA
OutputDebugStringA
GetModuleFileNameA
InitializeCriticalSection
MultiByteToWideChar
UnhandledExceptionFilter
InterlockedIncrement
lstrlenW
lstrcmpiA
WideCharToMultiByte
CloseHandle
lstrcpyA
lstrcatA
SetLastError
SizeofResource
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
LocalFree
lstrcmpA
GetSystemDirectoryW
LocalAlloc
GetVersionExA
FormatMessageA
FormatMessageW
CreateFileW
GetFileAttributesA
lstrcpyW
CreateEventW
CreateThread
WaitForMultipleObjects
SetEvent
ResetEvent
WaitForSingleObject
SetUnhandledExceptionFilter
DeleteCriticalSection
GetSystemDirectoryA
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
LeaveCriticalSection
EnterCriticalSection
SetHandleInformation
InterlockedDecrement
GetTickCount
GlobalFree
GetCommandLineA
GlobalAlloc
lstrcpynA
VirtualProtect

user32

SetForegroundWindow
SendMessageW
SetWindowPos
IsWindowVisible
ShowWindow
IsZoomed
IsIconic
InsertMenuW
InsertMenuA
LoadStringW
LoadStringA
CharNextA
SetMenuItemInfoA
ScreenToClient
GetSystemMetrics
IsWindow
AdjustWindowRect
GetWindowRect
CreateWindowExW
GetClientRect
GetMessageW
TranslateMessage
DispatchMessageW
PostQuitMessage
GetWindowTextW
InSendMessage
PostMessageW
SetRectEmpty
LoadCursorW
SetWindowLongW
DefWindowProcW
BeginPaint
EndPaint
DestroyWindow
UnregisterClassW
GetWindowLongW
SetWindowTextW
RegisterClassW

advapi32

RegDeleteKeyA
RegOpenKeyExW
RegEnumKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW

gdi32

SelectPalette
RealizePalette
StretchDIBits
DeleteObject
SetStretchBltMode
GetObjectType

ole32

ReleaseStgMedium
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoUninitialize
CoInitialize

msvcr71

memset
strtok
strchr
_stricmp
strstr
getenv
memmove
atoi
_strupr
toupper
_strnicmp
_strlwr
_adjust_fdiv
_except_handler3
memcpy
malloc
calloc
free
_vsnprintf
_initterm
swprintf
wcscpy
wcscat
_wcsicmp
realloc
wcsncpy
strncpy
__CppXcptFilter
__dllonexit
_onexit

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b16d61e1425d751416f670cc7cf0a19c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcr71

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 69KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 69KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 8KB - Virtual size: 4KB