480c46b89525902ccc7bd7899ab049dc12435c02f7737409f12166992c1af212

Sharing

Copy URL Twitter E-mail

General

Target

480c46b89525902ccc7bd7899ab049dc12435c02f7737409f12166992c1af212
Size

189KB
MD5

615863c5d1bac0d4aab8c65adad4d835
SHA1

847af4aaf32643a7a4161217a03ae00ae28c9757
SHA256

480c46b89525902ccc7bd7899ab049dc12435c02f7737409f12166992c1af212
SHA512

9c5374e47db9ca67205ad12380493c77e51a3a6a00edb63390ed511787cdc56ac09874b986d174c00158e25fbeedfafa957dec2d5b08a38fe33552ed140e534b
SSDEEP

3072:5OVn5Zqn6jSVu56yggymUHBW41piqsy/SU6NFoqHXavkO2Cx/UHFmfj:65Un6jSVusLmUHBl1piqsy/HeHXCOCa

Score

N/A

Malware Config

Signatures

Files

480c46b89525902ccc7bd7899ab049dc12435c02f7737409f12166992c1af212
.dll windows x86

2480763c5a1be91647962a07f8cf35e8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
GetCommandLineA
GetCurrentProcess
SetHandleCount
TerminateProcess
SetFilePointer
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
VirtualAlloc
GetLastError
HeapFree
InterlockedIncrement
LoadLibraryA
GetProcAddress
OutputDebugStringA
InterlockedDecrement
DebugBreak
HeapAlloc
WriteFile
WideCharToMultiByte
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
VirtualFree
HeapCreate
HeapDestroy
GetOEMCP
GetACP
CloseHandle
FlushFileBuffers
SetStdHandle
HeapValidate
IsBadReadPtr
lstrlenA
GetVersion
ExitProcess
GetCPInfo
GetModuleFileNameA
GetStdHandle
GetFileType
GetStartupInfoA
IsBadWritePtr

user32

SetWindowTextA
GetClientRect
SetWindowLongA
GetDlgItem
ShowWindow
wsprintfA
GetWindow
SystemParametersInfoA
GetSystemMetrics
SetRect
SetWindowPos
GetDlgItemInt
SetFocus
GetWindowTextLengthA
MessageBeep
GetWindowTextA
MessageBoxA
DialogBoxParamA
GetWindowRect
ScreenToClient
EnableWindow
BeginPaint
EndPaint
IsWindowVisible
GetDC
FillRect
ReleaseDC
InflateRect
GetWindowLongA
EndDialog
SendMessageA
InvalidateRect

gdi32

RestoreDC
CreateSolidBrush
SaveDC
DeleteObject

comdlg32

ChooseColorA
ChooseFontA

ltefx13n

ord103

Exports

Exports

DllMain
L_PntDlgBrush
L_PntDlgFill
L_PntDlgRegion
L_PntDlgShape
L_PntDlgText

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2480763c5a1be91647962a07f8cf35e8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ltefx13n

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 107KB - Virtual size: 107KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 107KB - Virtual size: 107KB

.reloc
Size: 4KB - Virtual size: 4KB