8ac5d77e08dba7f9108cf12a3b5d227087665de5ed633bd047685c305b568cdf

General

Target

8ac5d77e08dba7f9108cf12a3b5d227087665de5ed633bd047685c305b568cdf
Size

36KB
MD5

2e074d5fc1c40e41798f7fb6f95e4cc1
SHA1

52012d01da91cce9ef61b5a10dd80695a2eb2a63
SHA256

8ac5d77e08dba7f9108cf12a3b5d227087665de5ed633bd047685c305b568cdf
SHA512

113cd4e5b5203cbe287e2f43502203373c18c0202929c8683ab6d1cee8e1a8b01ac7ba29990bb05efbdd79c5360c2a2f1dc72bf8857e21d8eef86428297a1718
SSDEEP

384:19s+/b2AgmM3hjiVgIrEKXtX+w69ayr+sI+7l+gdo1qUHqQ6TV6hvzAYPiRjkanm:1m+STjiVgIQ0l6zlItHqUyIzAYPujkn

Score

N/A

Malware Config

Signatures

Files

8ac5d77e08dba7f9108cf12a3b5d227087665de5ed633bd047685c305b568cdf
.dll windows x86

d2331c8440fe6a0fe3bfb70c2fb3932d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenThread
GetCurrentProcessId
Thread32First
CreateToolhelp32Snapshot
GetCommandLineA
Sleep
CreateThread
GetModuleFileNameA
WideCharToMultiByte
ReadProcessMemory
GetProcAddress
LoadLibraryA
GetTempPathA
SetThreadPriority
GetFileSize
ReadFile
CreateFileA
GetThreadContext
HeapAlloc
GetLastError
GetModuleHandleA
SetThreadContext
CloseHandle
Thread32Next
AddVectoredExceptionHandler
VirtualProtect
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetProcessHeap
InterlockedExchange
DeleteCriticalSection

msvcrt

free
wcscpy
wcsncat
wcslen
wcsstr
strrchr
strcat
malloc
_except_handler3
strchr
_vsnprintf
isspace
isalnum
wcscat
exit
__dllonexit
_onexit
_initterm
_adjust_fdiv
_strcmpi
_strlwr
mbstowcs
wcscmp
_stricmp
strncpy
strlen
strstr
atoi
sprintf
strcpy
memcpy
memset
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler

gdiplus

GdipSaveImageToFile
GdipDisposeImage
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateBitmapFromHBITMAP
GdiplusStartup

gdi32

DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
CreateDCA
DeleteObject

wsock32

closesocket
shutdown

user32

GetForegroundWindow
GetClassNameW
GetWindow
wsprintfA

Sections

.text
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d2331c8440fe6a0fe3bfb70c2fb3932d

Headers

File Characteristics

Imports

kernel32

msvcrt

gdiplus

gdi32

wsock32

user32

Sections

.text Size: 25KB - Virtual size: 25KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 7KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 25KB - Virtual size: 25KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 7KB

.reloc
Size: 2KB - Virtual size: 1KB