9dacfd12b1e1cf585e066cda0bf66f1d50242642d3ffdb8b7e04607a6fb27515

Sharing

Copy URL Twitter E-mail

General

Target

9dacfd12b1e1cf585e066cda0bf66f1d50242642d3ffdb8b7e04607a6fb27515
Size

212KB
MD5

c72dcae6443a7565e0a851668f77b113
SHA1

72ef3b8879fde7d07f13e5825cedcd2238878f2e
SHA256

9dacfd12b1e1cf585e066cda0bf66f1d50242642d3ffdb8b7e04607a6fb27515
SHA512

8d6e4380838e5487893a99965290e96e4daea962bd4ad73b627521c11ddec70da9018f18a7f46c4cd42a51e4af71ae4518930fee59784e0a8ba0b5c3de2f85b8
SSDEEP

6144:aAz+TsKkYpVao2K9orPvG/4lREyUNYS/:TiTshyVaLKK7HlayJO

Score

N/A

Malware Config

Signatures

Files

9dacfd12b1e1cf585e066cda0bf66f1d50242642d3ffdb8b7e04607a6fb27515
.dll windows x86

53be6b1f057f194d95a1d43ae60bd0e6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateEventA
ExitProcess
FindFirstFileA
FreeEnvironmentStringsW
GetCommandLineA
GetModuleFileNameA
GetModuleHandleA
GetProcessHeap
GetProcessWorkingSetSize
GetStartupInfoA
GetVersionExA
GlobalMemoryStatus
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapReAlloc
IsBadStringPtrA
IsValidCodePage
LeaveCriticalSection
MultiByteToWideChar
OpenEventA
RtlUnwind
SetFilePointer
SetLastError
SetPriorityClass
SetUnhandledExceptionFilter
TlsGetValue
WaitForSingleObject
lstrlenW

user32

SetMenuItemInfoA
SetFocus
SetCapture
RemoveMenu
RegisterClassExA
OffsetRect
LoadImageA
IsZoomed
IsDlgButtonChecked
IsDialogMessageA
GetWindowLongA
GetPropA
GetMenu
DispatchMessageA
CreatePopupMenu
CreateIconIndirect
CloseClipboard
BeginDeferWindowPos
wsprintfA
EmptyClipboard

advapi32

ConvertSDToStringSDRootDomainA
BuildSecurityDescriptorW
GetKernelObjectSecurity
LookupSecurityDescriptorPartsW
LsaQueryTrustedDomainInfoByName
LsaStorePrivateData
ObjectDeleteAuditAlarmA
OpenEventLogW
SetSecurityDescriptorSacl
SetTraceCallback
CryptDestroyKey

ddraw

DDInternalUnlock
DSoundHelp
DirectDrawCreateEx
DirectDrawEnumerateA
GetDDSurfaceLocal

ole32

CoBuildVersion
CoCreateInstance
CoFileTimeNow
CoGetMalloc
CoTaskMemFree

Exports

Exports

UnregisterDriveChangeCallback

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53be6b1f057f194d95a1d43ae60bd0e6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ddraw

ole32

Exports

Exports

Sections

.text Size: 136KB - Virtual size: 135KB

.data Size: 60KB - Virtual size: 143KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 136KB - Virtual size: 135KB

.data
Size: 60KB - Virtual size: 143KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB