e5fe9485a9b1296bd0a13b0538058b2ccb6916e92e0efb54978861cc756e018e

Sharing

Copy URL Twitter E-mail

General

Target

e5fe9485a9b1296bd0a13b0538058b2ccb6916e92e0efb54978861cc756e018e
Size

260KB
MD5

99a8bb4ef14f4aefa84b6a433e09ffb4
SHA1

02a7286bc1bf69c6172ceaf3988e1e8ea24a2ba0
SHA256

e5fe9485a9b1296bd0a13b0538058b2ccb6916e92e0efb54978861cc756e018e
SHA512

180d945d4bfc531aa801a68c9f43ceacf75f612dde7acd05c9184358ec5ba061475f5285d161a511e319a09f3d26518577cf8b33c34f786408a7f9272eae7330
SSDEEP

3072:RjlT/AnQcGmHgIxpoRpcIK/Kp8jcxeoiMhU:Rj1+QcGmHgGpoRpcIKy+

Score

N/A

Malware Config

Signatures

Files

e5fe9485a9b1296bd0a13b0538058b2ccb6916e92e0efb54978861cc756e018e
.dll windows x86

e975d17823b054dce4c15057fef7b4ba

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
GetLocaleInfoW
GetTimeZoneInformation
FlushFileBuffers
CompareStringW
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
MulDiv
GetSystemTime
GetModuleFileNameA
GetPrivateProfileStringA
ClearCommError
Sleep
GetTickCount
PurgeComm
WriteFile
ReadFile
CreateFileA
GetCommState
CloseHandle
SetCommState
SetCommTimeouts
GetUserDefaultLCID
SetupComm
GetCommandLineA
GetVersion
IsBadWritePtr
IsBadReadPtr
HeapValidate
DebugBreak
GetStdHandle
InterlockedDecrement
OutputDebugStringA
GetProcAddress
LoadLibraryA
InterlockedIncrement
RtlUnwind
ExitProcess
TerminateProcess
GetCurrentProcess
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetLastError
GetCurrentThread
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
GetModuleHandleA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
HeapFree
VirtualFree
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FatalAppExitA
HeapAlloc
HeapReAlloc
VirtualAlloc
SetConsoleCtrlHandler
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
LCMapStringW
SetFilePointer
SetStdHandle
SetEnvironmentVariableA

user32

RegisterClassA
CreateWindowExA
ShowWindow
UpdateWindow
PostQuitMessage
DefWindowProcA
FillRect
GetDC
ReleaseDC

gdi32

GetDeviceCaps
SetBkMode
SetTextColor
CreateCompatibleBitmap
CreateSolidBrush
GetCurrentObject
GetObjectA
CreateFontIndirectA
GetTextExtentPoint32A
TextOutA
BitBlt
DeleteObject
CreateCompatibleDC
DeleteDC
SelectObject
GetPixel
GetStockObject

Exports

Exports

User_AddPicture
User_AddTemperature
User_AddText
User_AddTextEx
User_AddTime
User_AddTimeMachine
User_AjustTime
User_CloseScreen
User_DelProgram
User_OpenScreen
User_SendPicToRAM
User_SendTextExToRAM
User_SendTextFontLibToRAM
User_SendToScreen

Sections

.text
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e975d17823b054dce4c15057fef7b4ba

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 212KB - Virtual size: 211KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 20KB - Virtual size: 29KB

.idata Size: 4KB - Virtual size: 3KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 212KB - Virtual size: 211KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 20KB - Virtual size: 29KB

.idata
Size: 4KB - Virtual size: 3KB

.reloc
Size: 8KB - Virtual size: 7KB