a11a37dc0473b0a5bf19572b4f8cb8d9013d4b9a4b6064238afc6ff2ac6d3b05

Sharing

Copy URL Twitter E-mail

General

Target

a11a37dc0473b0a5bf19572b4f8cb8d9013d4b9a4b6064238afc6ff2ac6d3b05
Size

43KB
MD5

e887a63347217e518e60517865fe0158
SHA1

40518070a89dc4bba7ed40b92fffbb1f22a41d42
SHA256

a11a37dc0473b0a5bf19572b4f8cb8d9013d4b9a4b6064238afc6ff2ac6d3b05
SHA512

5767f34b48feb31a413ec303708207e5d8282f1c2723cf2345b64df398d4f8f6b97eb6c1546a8d8de8003142c1234e66f70bc69b8781d4873591ad55ee1c0168
SSDEEP

768:TW6JMhwooCWQh+2J5jYCLMhwcKM5MwMWEBvxMhLbinem:T5JqHcQNJtq/KObPEJxqLbFm

Score

N/A

Malware Config

Signatures

Files

a11a37dc0473b0a5bf19572b4f8cb8d9013d4b9a4b6064238afc6ff2ac6d3b05
.exe windows x86

a6030b2d184de77a212c7c7027d19e39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
LeaveCriticalSection
GetPrivateProfileStringW
GetPrivateProfileSectionW
DeleteCriticalSection
GetSystemTimeAsFileTime
WritePrivateProfileStringW
GetCurrentThreadId
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
VirtualAlloc

user32

LoadStringW

advapi32

RegOpenKeyExW
RegCloseKey
RegSetValueExW

ole32

CoUninitialize
StringFromGUID2
CoCreateGuid
CoInitialize

mscms

CreateColorTransformA
DeleteColorTransform
IsColorProfileTagPresent
UnregisterCMMA
GetStandardColorSpaceProfileA
GetStandardColorSpaceProfileW
TranslateColors
SetColorProfileHeader
GetColorDirectoryW
TranslateBitmapBits

ddraw

CompleteCreateSysmemSurface
DllCanUnloadNow

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.Mone
Size: 512B - Virtual size: 160B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mIL
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.VVZhE
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lEhS
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.YCd
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6030b2d184de77a212c7c7027d19e39

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

mscms

ddraw

Sections

.text Size: 18KB - Virtual size: 17KB

.Mone Size: 512B - Virtual size: 160B

.mIL Size: 1KB - Virtual size: 1KB

.rdata Size: 1KB - Virtual size: 1KB

.VVZhE Size: 1024B - Virtual size: 1KB

.lEhS Size: 1KB - Virtual size: 1KB

.YCd Size: 1024B - Virtual size: 1KB

.data Size: 12KB - Virtual size: 158KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 18KB - Virtual size: 17KB

.Mone
Size: 512B - Virtual size: 160B

.mIL
Size: 1KB - Virtual size: 1KB

.rdata
Size: 1KB - Virtual size: 1KB

.VVZhE
Size: 1024B - Virtual size: 1KB

.lEhS
Size: 1KB - Virtual size: 1KB

.YCd
Size: 1024B - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 158KB

.rsrc
Size: 4KB - Virtual size: 4KB