8f845e1cf883c0c9992dbb1acfc99e837108f1d8039afd55f16377e8287e0001

Sharing

Copy URL

Twitter E-mail

General

Target

8f845e1cf883c0c9992dbb1acfc99e837108f1d8039afd55f16377e8287e0001
Size

368KB
MD5

6cae0dbfbd296712fab66ede96d73224
SHA1

7de07c437c2704dc1553c8a7838d103ca89ee163
SHA256

8f845e1cf883c0c9992dbb1acfc99e837108f1d8039afd55f16377e8287e0001
SHA512

4fc14d6e27cd127dc50c1888aef62f1cf90dc334c82e2cad134edfc6de10c70e4c6a062a53efc776b7f590f804acb0d9b790ccf021a1683b7760b15e9a5df4f8
SSDEEP

6144:b43KTHEJrUWmHBOtuzW2C/oOWFzRqjymbjMxBvgt+uQcotlvyicb4usRG:b4aTHE5URHARbgOUz0jyjHY0t/l6nbjv

Score

N/A

Malware Config

Signatures

Files

8f845e1cf883c0c9992dbb1acfc99e837108f1d8039afd55f16377e8287e0001
.dll windows x86

7a1ca208ebd105b734bfca9600f690f8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegOpenKeyExA
RegOpenKeyA
RegEnumKeyExA

user32

ClientToScreen
GetForegroundWindow
GetClassNameA
CallWindowProcA
FindWindowA
CharUpperBuffA
CharLowerBuffA
DispatchMessageW
GetCapture
DefWindowProcA
DispatchMessageA
CreateIcon
DrawMenuBar
DefMDIChildProcA
EqualRect
DrawIcon
GetClientRect
EndPaint
GetCursor
DestroyWindow
DrawEdge
EmptyClipboard
GetDlgItem
FrameRect
GetDC
EnumThreadWindows
GetClassInfoA
AdjustWindowRectEx
DestroyCursor
GetClassLongA

kernel32

IsBadReadPtr
IsBadHugeReadPtr
SetErrorMode
GetVersionExA
ExitProcess
WriteFile
GetModuleHandleA
GetVersion
GetEnvironmentStrings
GetStringTypeW
GetCommandLineA
SetEndOfFile
GetDiskFreeSpaceA
HeapAlloc
InitializeCriticalSection
WideCharToMultiByte
LoadLibraryExA
GetProcessHeap
lstrlenA
GlobalFindAtomA
GetLocalTime
SetHandleCount
GetFileAttributesA
GetOEMCP
GlobalDeleteAtom
GetFileSize
GetCommandLineW
VirtualAllocEx
GetLastError
GetModuleHandleW
HeapFree
SetEvent
LoadResource
lstrcpynA
GetProcAddress
GetACP
ReadFile

msvcrt

memset
clock
exit
swprintf
strlen
pow
log10
mbstowcs
sprintf

oleaut32

VariantChangeType
SafeArrayGetUBound
SysStringLen
SysAllocStringLen
RegisterTypeLib
SafeArrayGetElement
SafeArrayUnaccessData
GetErrorInfo

comdlg32

GetFileTitleA
FindTextA
GetSaveFileNameA
GetOpenFileNameA
ChooseColorA

gdi32

SetBkMode
BitBlt
SetTextColor

version

VerFindFileA
VerQueryValueA
GetFileVersionInfoSizeA

Sections

CODE
Size: 146KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 199KB - Virtual size: 199KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES46
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES05
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RES63
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES39
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES93
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES64
Size: 512B - Virtual size: 452B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES43
Size: 1024B - Virtual size: 698B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

RES20
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a1ca208ebd105b734bfca9600f690f8

Headers

File Characteristics

Imports

advapi32

user32

kernel32

msvcrt

oleaut32

comdlg32

gdi32

version

Sections

CODE Size: 146KB - Virtual size: 145KB

.data Size: 199KB - Virtual size: 199KB

RES46 Size: 3KB - Virtual size: 2KB

RES05 Size: 1024B - Virtual size: 868B

RES63 Size: 1KB - Virtual size: 1KB

RES39 Size: 1KB - Virtual size: 1KB

RES93 Size: 1KB - Virtual size: 1KB

RES64 Size: 512B - Virtual size: 452B

RES43 Size: 1024B - Virtual size: 698B

RES20 Size: 2KB - Virtual size: 2KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 1024B - Virtual size: 952B

CODE
Size: 146KB - Virtual size: 145KB

.data
Size: 199KB - Virtual size: 199KB

RES46
Size: 3KB - Virtual size: 2KB

RES05
Size: 1024B - Virtual size: 868B

RES63
Size: 1KB - Virtual size: 1KB

RES39
Size: 1KB - Virtual size: 1KB

RES93
Size: 1KB - Virtual size: 1KB

RES64
Size: 512B - Virtual size: 452B

RES43
Size: 1024B - Virtual size: 698B

RES20
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 1024B - Virtual size: 952B