7dd8468b87a9fc8aec09798f25335c3d64f97b0138614d3b134bed276f39bc24

General

Target

7dd8468b87a9fc8aec09798f25335c3d64f97b0138614d3b134bed276f39bc24
Size

44KB
MD5

0ecd9b19f56bef5015da816881dfd987
SHA1

d0d52bc8e9d2d1b9f3e1914eecd2a664c7213ff2
SHA256

7dd8468b87a9fc8aec09798f25335c3d64f97b0138614d3b134bed276f39bc24
SHA512

8f255b2a62ff69886a6eb6a95867623d8badbba3d7c1b6b95e9614598bf8d6592cf667ded2d9b92f03d9d29badb98d1e874992ea8bc3c8af0e6952c277c128b7
SSDEEP

384:0MNWg8sEO77sXVPr7+/svyMfADpAq1jK18jzCWelxef9y53ynF1:b5H/7u7gs7C1jM8GX53W1

Score

N/A

Malware Config

Signatures

Files

7dd8468b87a9fc8aec09798f25335c3d64f97b0138614d3b134bed276f39bc24
.dll windows x86

310bf5917514ad8c9a75c3734c3c8a6c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
GetLastError
CreateMutexA
SetLastError
CloseHandle
WaitForSingleObject
ReleaseMutex
SetEvent
GetVolumeInformationA

user32

GetWindowLongA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA

msvcrt

memmove
strncpy
??2@YAPAXI@Z
__CxxFrameHandler
?what@exception@@UBEPBDXZ
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
_CxxThrowException
??1exception@@UAE@XZ
free
strlen
memcpy
memset
sprintf
strchr
_onexit
malloc
??1type_info@@UAE@XZ
__dllonexit
_initterm
_adjust_fdiv

Exports

Exports

set_create_window_hook
unset_create_window_hook

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Shared
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

310bf5917514ad8c9a75c3734c3c8a6c

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 4KB

Shared Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.pdata Size: - Virtual size: 52KB

.text
Size: 20KB - Virtual size: 20KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 4KB

Shared
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB

.pdata
Size: - Virtual size: 52KB