2a57c6c683b5bc7019fe009ed1cb7336e8cac444223f67b43ec33705075da10a

Sharing

Copy URL Twitter E-mail

General

Target

2a57c6c683b5bc7019fe009ed1cb7336e8cac444223f67b43ec33705075da10a
Size

112KB
MD5

444b7867164e7de7d30244530e757fc8
SHA1

2482dd875af16ef8e2f43d36a238822a2c05c144
SHA256

2a57c6c683b5bc7019fe009ed1cb7336e8cac444223f67b43ec33705075da10a
SHA512

44a1e3f263f7be394d46d39f23b92ee6d0145429f3861e8e1189b986516f3dae3c389e6dbfefa68dfee4c98b4fd5462d36f74152d40064710108db0f4a14933f
SSDEEP

1536:l9fppLKVy+QuZ20hyW0JXEiTqhd+zyJADdy6uF1KGl8n7J8jqmAloOtnrb7dMxlP:rppLQ5053TaJADdyfgG68dMo8Z2f

Score

N/A

Malware Config

Signatures

Files

2a57c6c683b5bc7019fe009ed1cb7336e8cac444223f67b43ec33705075da10a
.dll windows x86

f1e4489e2857a38c0728e03a9c916379

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
FlushFileBuffers
HeapSize
LCMapStringW
LCMapStringA
GetSystemInfo
SetStdHandle
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualQuery
InterlockedExchange
GetOEMCP
GetACP
RtlUnwind
ReadFile
CreateFileA
LoadLibraryA
GetModuleFileNameA
GetProcAddress
VirtualProtect
FreeLibrary
ExitProcess
GetCurrentThreadId
GetCommandLineA
GetVersionExA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
HeapFree
HeapAlloc
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
UnhandledExceptionFilter
WriteFile
SetFilePointer
EnterCriticalSection
LeaveCriticalSection
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
GetCPInfo
GetLocaleInfoA
SetEndOfFile

user32

KillTimer
SetTimer
GetCursorPos
ScreenToClient
CallWindowProcA
SetWindowTextA
PostQuitMessage
DefWindowProcA
GetWindowLongA
SetWindowLongA
ShowCursor
LoadCursorA
RegisterClassA
AdjustWindowRect
CreateWindowExA
ShowWindow
UpdateWindow
SendMessageA
GetDC
ReleaseDC
InvalidateRect
DestroyWindow
PostMessageA

gdi32

CreateFontA
SelectObject
EnumFontFamiliesExA
GetStockObject

comctl32

FlatSB_SetScrollProp
ord17

Exports

Exports

NScrPlugInMain

Sections

.text
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f1e4489e2857a38c0728e03a9c916379

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 30KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 4KB - Virtual size: 9KB

.reloc Size: 4KB - Virtual size: 3KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 32KB - Virtual size: 30KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 4KB - Virtual size: 9KB

.reloc
Size: 4KB - Virtual size: 3KB

.rmnet
Size: 60KB - Virtual size: 60KB