b0a1517c17cde849fc9ef13d6ed838ffe81201943cf19b9089d7ae0b430cf1b4

General

Target

b0a1517c17cde849fc9ef13d6ed838ffe81201943cf19b9089d7ae0b430cf1b4
Size

312KB
MD5

ed05df74b5878af4d88e10d324931be0
SHA1

f0596e42f30fc4ef30aa4f6e0963d3731e628096
SHA256

b0a1517c17cde849fc9ef13d6ed838ffe81201943cf19b9089d7ae0b430cf1b4
SHA512

9859cef448dbd0d51955184d9e6edd66417f92a49e06a243aed29f3055646359a93818bcb3ff3d3847d38aeb382af973deff61a2efe149169620ac8185fb2fc9
SSDEEP

6144:ot3qXU+lnvOi+hhNY1B/dor1f8kya7NBfxulRPkFW/V:8Z+lvO4V4GkD5Bisw

Score

N/A

Malware Config

Signatures

Files

b0a1517c17cde849fc9ef13d6ed838ffe81201943cf19b9089d7ae0b430cf1b4
.dll windows x86

14b8c893aea52cb461d3a2300bb3bce3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_ftol
atoi
calloc
bsearch
fgets
strcpy
printf
getenv
abort
exit
memmove
sprintf
fread
free
_assert
strstr
fclose
memcpy
_stricmp
ftell
memset
fprintf
sqrt
malloc
strtok
sscanf
_iob
strncmp
atol
rand
fwrite
_CIpow
fopen
strcmp
realloc
fseek

kernel32

TlsAlloc
GetVersionExA
GetCurrentThreadId
TlsGetValue
TlsSetValue
GetCurrentThread
GetTickCount
Sleep
GetDateFormatA
QueryPerformanceCounter
GetModuleFileNameA
GetModuleHandleA
GetStartupInfoA
GlobalAlloc
GlobalFree
DeleteCriticalSection
InitializeCriticalSection
CreateFileA
GetProcAddress
TlsFree
LoadLibraryA
GetLastError
FlushConsoleInputBuffer
LeaveCriticalSection
IsBadReadPtr
VirtualAlloc
SetThreadPriority
EnterCriticalSection
VirtualFree
FreeLibrary
GlobalSize
SetLastError

advapi32

RegQueryValueExA
RegCloseKey
RegOpenKeyExA

user32

ReleaseDC
GetWindowRect
GetParent
MessageBoxA
GetClientRect
WindowFromDC
UnhookWindowsHookEx
PrintWindow
GetDC

Exports

Exports

BlockSetup
GetIter
ImagAsDouble
InPlaceRemainder
Number_Or
Print
StringAFromString
set_hIST
vExecToken

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14b8c893aea52cb461d3a2300bb3bce3

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

user32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 84KB - Virtual size: 80KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 84KB - Virtual size: 80KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 8KB - Virtual size: 5KB