936b107b27c430dbda2a7bd22d306ee17372f6f26356c8dc0c4cdcb620a4bb91

Sharing

Copy URL Twitter E-mail

General

Target

936b107b27c430dbda2a7bd22d306ee17372f6f26356c8dc0c4cdcb620a4bb91
Size

422KB
MD5

a322cac25aaea8bc0e8f78c707f206ea
SHA1

8125ef69b53b91996de8bcd8c0e43ad8789e6124
SHA256

936b107b27c430dbda2a7bd22d306ee17372f6f26356c8dc0c4cdcb620a4bb91
SHA512

bfc8b2f9d80a17cfca5a323959416b74d1f563b5819c46e04645a85a4d6ff6877d6c2ea430b00022161dd04e25848856ad42632eb6830cc891672f0675f6092d
SSDEEP

12288:Kc4VOT3csIPf2z13i0Mj/2m8uz5APuFIY26D69Q:Kc4BX2z1ysuzygWQ

Score

N/A

Malware Config

Signatures

Files

936b107b27c430dbda2a7bd22d306ee17372f6f26356c8dc0c4cdcb620a4bb91
.dll windows x86

d557fc4ec91442ffa3c3b023e438cf1e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumKeyExA
RegOpenKeyExA
SystemFunction026
RegCloseKey

gdi32

CreateCompatibleDC
CreateDIBSection
CreateFontIndirectA
CreateFontIndirectW
DeleteDC
DeleteObject
ExtTextOutA
ExtTextOutW
GetAspectRatioFilterEx
GetCharacterPlacementA
GetCharacterPlacementW
GetDeviceCaps
GetFontLanguageInfo
GetGlyphOutlineA
GetTextMetricsW
IntersectClipRect
MoveToEx
SelectObject
SetBkColor
SetBkMode
SetICMMode
SetTextColor
StrokeAndFillPath
TranslateCharsetInfo

kernel32

CloseHandle
CreateFileA
CreateMutexA
CreateThread
DebugBreak
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FindResourceW
FreeLibrary
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetFileSizeEx
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessAffinityMask
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetTickCount
GetVersion
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadResource
MultiByteToWideChar
OutputDebugStringA
QueryPerformanceCounter
ReleaseMutex
RtlUnwind
SetUnhandledExceptionFilter
SizeofResource
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
_lcreat

ole32

CreateStreamOnHGlobal

msvcrt

_lock
tolower
_CIacos
_CIasin
_CIatan2
_CIcos
_CIlog
_CIsin
_CIsqrt
_CxxThrowException
_Gettnames
__CxxFrameHandler
__dllonexit
__p__osver
_amsg_exit
_controlfp
_finite
_initterm
_isnan
_stricmp
_strncoll
_unlock
_vsnwprintf
_wtoi
floor
free
iswdigit
iswpunct
iswspace
malloc
memcpy
memmove
memset
qsort
sqrt
strxfrm

Exports

Exports

CheckURLScheme
GetSockaddrType
SetStep
ValueFreeLen

Sections

.text
Size: 83KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d557fc4ec91442ffa3c3b023e438cf1e

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

msvcrt

Exports

Exports

Sections

.text Size: 83KB - Virtual size: 82KB

.rdata Size: 199KB - Virtual size: 198KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 83KB - Virtual size: 82KB

.rdata
Size: 199KB - Virtual size: 198KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 5KB - Virtual size: 5KB