63f9330f1ab1e2a4ecd996574a8ba217de0e936d85b2006e46f19ad596155cc3

General

Target

63f9330f1ab1e2a4ecd996574a8ba217de0e936d85b2006e46f19ad596155cc3
Size

120KB
MD5

0424240f004c5bf182b4800f82219f0a
SHA1

75dfa64b5ed45fae230adf916b0fb582ec0e0563
SHA256

63f9330f1ab1e2a4ecd996574a8ba217de0e936d85b2006e46f19ad596155cc3
SHA512

650a77f1736f5fe27823176acb8280b68cef682612bff45b80cd7d775ca8f5a8502eef2ac484982cfd88169dcea5c8ea95b5f5210d70e3cad024c3af4f29f074
SSDEEP

3072:0z2xETo9v3GrBp71vQTK8JhcD1PRus0A:R2OOrBp8K8Cw

Score

N/A

Malware Config

Signatures

Files

63f9330f1ab1e2a4ecd996574a8ba217de0e936d85b2006e46f19ad596155cc3
.dll windows x86

abb491a0e12113fc5fb6eca24d84f751

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetOverlappedResult
GetSystemTime
WriteConsoleInputVDMW
GetVersion
FreeLibrary
WriteConsoleOutputCharacterW
InterlockedCompareExchange
SetTapePosition
ReadConsoleInputA
ExitThread
FatalAppExitA
GetAtomNameA
GetProcAddress
WaitForSingleObject
GetLocalTime
FillConsoleOutputAttribute
GetModuleHandleA
VirtualAlloc
GetHandleInformation
IsValidLocale
GetShortPathNameW
LoadLibraryA

gdi32

GetDeviceCaps
ExcludeClipRect
GetObjectA
EnumFontFamiliesW
SelectObject
GetStockObject
CombineRgn
RemoveFontResourceA
SetPixelFormat
CreateCompatibleDC
DeleteDC
GetCharWidthA
CreateRoundRectRgn
CreateCompatibleBitmap
SetDCBrushColor
StartDocW
GdiEndDocEMF

shlwapi

PathAddExtensionA

msvcrt

setbuf
ferror
_mbscoll
__p__pgmptr
_execlp
_mbclen
fseek
_unlink
towlower
_getws
_Gettnames
_close
fabs
ftell
fputs
_kbhit
fwprintf
_lrotl
printf
wcstombs
tan
_beep
fprintf
_strlwr
_fgetchar
sprintf
memset
fopen
gets
_mbsnset
__RTCastToVoid
_mbsnbicmp
_wsystem
feof
_ismbcgraph
_filelengthi64
fread
_setjmp3
_fcloseall
_wunlink
_wgetcwd
_read
fsetpos
_CIsin
fclose
fputws
fwrite
tanh
_safe_fdiv
_iob
fputc
_ismbbpunct
_global_unwind2
_mbctoupper
_splitpath
_open
_heapset

Exports

Exports

Dgvg
Fkfpiptla
Fqhkrxafw
Fztgimp
Jken
Qjfgmvn
Qtntbch
Whesvs
Zrzpxwts
Zuig

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abb491a0e12113fc5fb6eca24d84f751

Headers

File Characteristics

Imports

kernel32

gdi32

shlwapi

msvcrt

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 50KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 50KB

.reloc
Size: 8KB - Virtual size: 6KB