a0b13173ffc30d724ed15d0d5e00910b39b48321654245d8446f8753e9c3406d

Sharing

Copy URL

Twitter E-mail

General

Target

a0b13173ffc30d724ed15d0d5e00910b39b48321654245d8446f8753e9c3406d
Size

116KB
MD5

16f1c8372c6b11b1fb605ede7fad0b97
SHA1

467f0e4838eb84b2ca442ec47fe543ccfee4d9df
SHA256

a0b13173ffc30d724ed15d0d5e00910b39b48321654245d8446f8753e9c3406d
SHA512

efbbada78d9ac4da7373f50bc5eb9b4ed5b1bef6b43480904962b74cfec9b135885e1aa3a23fc87bbb11aa74bd55bb857a8b05c075e7993c0246905913fecbe6
SSDEEP

1536:TGzIQ6vFeKOawmy38yUfLNsSxmMVoCLNle2sjqavaAopPF95h6pYJHz8RgAV:gIRFStUpxxmAjemavaAkPF9X6a3A

Score

N/A

Malware Config

Signatures

Files

a0b13173ffc30d724ed15d0d5e00910b39b48321654245d8446f8753e9c3406d
.dll windows x86

d1a0048a84f13cfa9a42b0919e8a2e02

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatW
GetSystemTime
GlobalLock
PrepareTape
SetFilePointerEx
GetLocalTime
GetBinaryTypeW
ReadConsoleOutputA
SwitchToFiber
IsValidLocale
ReadConsoleInputExW
EnumDateFormatsW
InterlockedIncrement
FindFirstVolumeMountPointW
lstrcatW
FindVolumeMountPointClose
FreeLibrary
TerminateThread
HeapReAlloc
SetConsoleCtrlHandler
WriteConsoleInputVDMA
GetSystemPowerStatus
CommConfigDialogW
LoadLibraryA
GetShortPathNameW
WritePrivateProfileStructA
GetSystemDefaultLCID
SystemTimeToFileTime
VirtualProtectEx
FindCloseChangeNotification
OpenFileMappingW
lstrcatA
AddConsoleAliasW
GetModuleHandleA
lstrcmpW
FlushViewOfFile
GetTickCount
RtlMoveMemory
GetProcessShutdownParameters
ReadFileEx
SetWaitableTimer
CloseConsoleHandle
SetFileApisToOEM
WriteConsoleOutputA
GetFullPathNameW
Heap32ListNext
GetNumberOfConsoleMouseButtons
SearchPathA
GetPriorityClass
EnumSystemCodePagesW
LockFile
RequestWakeupLatency
GlobalUnlock
GetConsoleAliasW
SetConsoleCursor
GetConsoleAliasExesLengthA
GetProcAddress
VirtualAlloc
GetVersion
SetSystemTimeAdjustment
GetHandleInformation

gdi32

Polygon
Rectangle
SetViewportOrgEx
CreateCompatibleDC
ResetDCA
CombineRgn
DeleteDC
CreateCompatibleBitmap
GetObjectA
SelectObject
PolyPatBlt
GetStockObject
SetPixelFormat

winmm

midiOutShortMsg
PlaySoundA
mmioSendMessage
mixerGetLineInfoA
waveOutUnprepareHeader
timeGetTime

msvcrt

fopen
_mbsnbcnt
fwprintf
ferror
ftell
feof
_unlink
fclose
fprintf
fwrite
fseek
fread
sprintf
memset
fputc
fsetpos
printf
fputs

Exports

Exports

Aijpldtqv
Axbjdaepc
Fhufewbh
Gkxopwjr
Gorawmi
Gqzujyqnb
Lwxsj
Sbjejqsn
Srfyb
Stpluuylpa
Swcztybq

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d1a0048a84f13cfa9a42b0919e8a2e02

Headers

File Characteristics

Imports

kernel32

gdi32

winmm

msvcrt

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 51KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 51KB

.reloc
Size: 8KB - Virtual size: 6KB