838bc2a3c07a0f5725d92c7dd0cca424fc1869f6451aae3f19b13b257d6a7756

Sharing

Copy URL Twitter E-mail

General

Target

838bc2a3c07a0f5725d92c7dd0cca424fc1869f6451aae3f19b13b257d6a7756
Size

55KB
MD5

e7cb2b3bfbaab0bd65a6a42a64b8cf14
SHA1

d62b7ce8476a495ca51acf654b723028c0fc9589
SHA256

838bc2a3c07a0f5725d92c7dd0cca424fc1869f6451aae3f19b13b257d6a7756
SHA512

0b119b6a7d9cab9de770fd3cca307b7825716dda88e995e8f030b409794e6daa916537b42b63b90840a7d7dc5fbf3c42fedd5ffebeafed0cf8266ae3073cceec
SSDEEP

1536:FX/4isLma94WeamYtm8sJX456F2gKTg+W+LWo:lds394UmYtm3FWg+W+LW

Score

N/A

Malware Config

Signatures

Files

838bc2a3c07a0f5725d92c7dd0cca424fc1869f6451aae3f19b13b257d6a7756
.dll windows x86

741a61586043d92549618196e7a3d697

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
SetThreadPriority
WriteFile
InitializeCriticalSection
GetProcAddress
TerminateProcess
IsDBCSLeadByteEx
LeaveCriticalSection
GlobalSize
CloseHandle
GetModuleHandleA
GetOEMCP
IsProcessorFeaturePresent
WideCharToMultiByte
GlobalFree
WaitForMultipleObjects
UnmapViewOfFile
LoadLibraryA
QueryPerformanceFrequency
QueryPerformanceCounter
EnterCriticalSection
CreateThread
MapViewOfFile
SetHandleCount
CreateFileMappingA
GetFileTime
VirtualQuery
GetSystemTimeAsFileTime

crypovau

ImmGetCompositionWindow
ImmGetRegisterWordStyleA
PifMgr_SetProperties
ImmGetCandidateListA
ImmSetCompositionStringA
ImmSetCompositionWindow
CtfAImmDeactivate
SdbGetBinaryTagData
PifMgr_CloseProperties
DAD_DragLeave
ImmDestroyContext
ImmUnlockClientImc
ILCombine
SdbCloseDatabase
ImmTranslateMessage
ImmDisableIme
ImmGetAppCompatFlags
ExtractIconEx
DoEnvironmentSubstA
RestartDialog
ImmGetContext
ImmGetImeInfoEx
SdbFindNextMsiPackage
DAD_DragEnterEx
CtfAImmActivate
ImmUnlockIMCC
PathResolve
PrintersGetCommand_RunDLL
ImmSetActiveContextConsoleIME
DllGetClassObject
PifMgr_OpenProperties
SdbOpenApphelpDetailsDatabase
IsLFNDrive
ImmReleaseContext
RestartDialogEx
ShimFlushCache
ImmSetActiveContext
CheckEscapesA
SdbGetMsiPackageInformation
SdbReadStringTagRef
ILSaveToStream
ImmGetCandidateListCountA

gdi32

GetBitmapBits
SetBrushOrgEx
Polyline
SetBkColor
LineTo
GetCharWidthA
GetDIBits
EndDoc
Pie
GetTextCharsetInfo
GetMetaFileBitsEx
GetCurrentObject
SetBkMode
CreateDIBSection
StretchDIBits
SetAbortProc

user32

MessageBeep
FlashWindow
GetMessageExtraInfo
GetWindow
GetUpdateRect
GetActiveWindow
GetWindowWord
GetSysColor
GetDlgItem
ShowWindow
DrawIconEx
PostQuitMessage
GetKeyState
GetScrollInfo
GetSystemMetrics
EndPaint
IsWindow
EmptyClipboard
IntersectRect
SetKeyboardState
SetRectEmpty
DestroyMenu

advapi32

AllocateAndInitializeSid
RevertToSelf
InitializeSecurityDescriptor
SetSecurityDescriptorGroup
AccessCheck
CryptGetHashParam
CryptCreateHash
GetSecurityDescriptorDacl
EqualSid
RegCloseKey
GetPrivateObjectSecurity

ole32

GetHGlobalFromStream
WriteFmtUserTypeStg
CoTaskMemAlloc
GetHGlobalFromILockBytes
OleCreateFromData
CoUninitialize
CoLockObjectExternal
IsAccelerator

msvcrt

memmove
_controlfp
_adjust_fdiv
__p__commode

Exports

Exports

CreateProcessNotify
arpcomp

Sections

.text
Size: 46KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

741a61586043d92549618196e7a3d697

Headers

File Characteristics

Imports

kernel32

crypovau

gdi32

user32

advapi32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 46KB - Virtual size: 48KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 46KB - Virtual size: 48KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB