a839bbef57477c1d2f4a9f370c04516c53996968e8b3d28ede0a57a8b2b7c42d

General

Target

a839bbef57477c1d2f4a9f370c04516c53996968e8b3d28ede0a57a8b2b7c42d
Size

271KB
MD5

297dd57c6eb4dfb10c0f17fbc00b5ff6
SHA1

db7174942cb460f42df1720d232273c5e8058364
SHA256

a839bbef57477c1d2f4a9f370c04516c53996968e8b3d28ede0a57a8b2b7c42d
SHA512

fb68884fa36453a21c6fc880599a7cb65d2c5e93302dbb78026c5b39a5f0154eb35ebe34559b77db0b1bd53628c870481064f0b7fdb8f71f68aec57a8fdbd841
SSDEEP

3072:Jte19L6+ICmc/pkrdFYM5XQaL/WLOp4EMDs4fJ1qO:a/PiRoqX5L/COsf1q

Score

N/A

Malware Config

Signatures

Files

a839bbef57477c1d2f4a9f370c04516c53996968e8b3d28ede0a57a8b2b7c42d
.dll windows x86

f4bec3302fa14a974fb759fb7882a8ea

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueA
RegCreateKeyA
RegCreateKeyA
RegDeleteValueW
RegEnumValueA
RegOpenKeyA
RegQueryInfoKeyA
RegOpenKeyW
RegEnumKeyExW
RegQueryValueW
RegEnumValueW
RegLoadKeyA
RegQueryValueExA
RegEnumKeyW
RegQueryInfoKeyW
RegQueryValueExW
RegDeleteKeyW
RegLoadKeyW
RegOpenKeyExA
RegDeleteKeyA

kernel32

GetFileTime
ExitProcess
DeleteFileW
GetLocalTime
CopyFileExA
CopyFileA
GetPriorityClass
CreateDirectoryA
lstrcatA
OpenFileMappingA
WriteFile
HeapFree
GetStdHandle
lstrcmpA
GlobalFree
OpenFile
DeleteFileA
FormatMessageA
FreeResource
CompareStringA
FlushFileBuffers
HeapAlloc
FindClose

user32

DialogBoxParamW
AppendMenuW
GetFocus
CreateIcon
GetScrollInfo
InsertMenuA
AppendMenuA
CloseWindow
GetMenu
DialogBoxParamA
DrawIcon
GetDC
GetCursor
IsMenu
DrawIconEx
CopyImage
GetScrollPos
DrawTextA
EndDialog
IsWindow
LoadMenuA
GetWindowTextLengthA
CopyIcon
DrawTextW

Sections

.kipch
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.lonj
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mdcjm
Size: 177KB - Virtual size: 537KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndjg
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4bec3302fa14a974fb759fb7882a8ea

Headers

File Characteristics

Imports

advapi32

kernel32

user32

Sections

.kipch Size: 34KB - Virtual size: 33KB

.lonj Size: 55KB - Virtual size: 54KB

.mdcjm Size: 177KB - Virtual size: 537KB

.ndjg Size: 4KB - Virtual size: 3KB

.kipch
Size: 34KB - Virtual size: 33KB

.lonj
Size: 55KB - Virtual size: 54KB

.mdcjm
Size: 177KB - Virtual size: 537KB

.ndjg
Size: 4KB - Virtual size: 3KB