8b28d0d786e628c37e1e06a631be9e816a33dc7e99a59f59a5f8dabff7e0cbda

Sharing

Copy URL Twitter E-mail

General

Target

8b28d0d786e628c37e1e06a631be9e816a33dc7e99a59f59a5f8dabff7e0cbda
Size

317KB
MD5

7df361d1ed28663e89cd0f6279fbe635
SHA1

a0018f5310259ac8a7df3e7af0ae90a525af25c4
SHA256

8b28d0d786e628c37e1e06a631be9e816a33dc7e99a59f59a5f8dabff7e0cbda
SHA512

43f4b847998b8031c94f89077261565ebcef63bf3cbd6ea1dd1658d979e5d4378dc170ac393c2bd44dbf56daf0e65aa2236e5fcaa0d9c690e9f78b3fe0c3e72b
SSDEEP

6144:QsL+MsKuENn7SjqIBxR0cz9TfCBsL1XKuzlDhCn3HcPK3vGodHKslhzpfL:QsLeENn7SdxRv9k8zlDUk1s3zl

Score

N/A

Malware Config

Signatures

Files

8b28d0d786e628c37e1e06a631be9e816a33dc7e99a59f59a5f8dabff7e0cbda
.dll windows x86

8b192a9c68a4163bddd899dc1cbe47e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

CM_Set_DevNode_Problem
SetupCloseInfFile
SetupOpenLog
SetupUninstallNewlyCopiedInfs
CM_Enumerate_Classes_Ex
CM_Get_Sibling

advapi32

RegOpenKeyExA
LsaClose
AreAllAccessesGranted
RegQueryValueExA

kernel32

WaitForSingleObject
lstrcpynA
lstrlenA
WideCharToMultiByte
WriteFile
GlobalReAlloc
CloseHandle
CompareStringA
CreateEventA
CreateFileA
CreatePipe
DeleteCriticalSection
DeleteFiber
EnterCriticalSection
ExitProcess
FatalExit
FindClose
FindCloseChangeNotification
FindFirstFileA
FindVolumeClose
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
FreeUserPhysicalPages
GetACP
GetCPInfo
GetCommModemStatus
GetCommandLineA
GetConsoleDisplayMode
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetCurrentConsoleFont
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDevicePowerState
GetDiskFreeSpaceA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileInformationByHandle
GetFileSize
GetFileSizeEx
GetFileType
GetFullPathNameA
GetHandleInformation
GetLastError
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLangID
GetSystemInfo
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
VirtualQuery
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsSystemResumeAutomatic
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
LocalAlloc
LocalFileTimeToFileTime
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
ReadFile
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleCount
SetHandleInformation
SetLastError
SetThreadLocale
SetThreadPriority
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree

wsock32

htonl
ntohl
socket
WSAAsyncGetProtoByNumber

oleaut32

SafeArrayGetLBound
VarUI2FromDate
VarR8Round
VarI4FromUI4
VarI4FromDate
VarCmp
VarBstrFromUI1
VariantInit
VariantCopyInd
VariantCopy
VariantClear
SafeArrayGetElement
VariantChangeType
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SysAllocStringLen
SysFreeString
SysReAllocStringLen

user32

EnumThreadWindows
wsprintfA
SetRectEmpty
LoadStringA
GetKeyboardType
CharNextA

Exports

Exports

DelItemString
FileExFlags
IsInstance
List_New
New
SetFromWindowsErr
StreamWriter
get_io_ptr
set_sPLT

Sections

.text
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b192a9c68a4163bddd899dc1cbe47e7

Headers

File Characteristics

Imports

setupapi

advapi32

kernel32

wsock32

oleaut32

user32

Exports

Exports

Sections

.text Size: 86KB - Virtual size: 85KB

.rdata Size: 166KB - Virtual size: 166KB

.data Size: 31KB - Virtual size: 31KB

.rsrc Size: 28KB - Virtual size: 27KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 86KB - Virtual size: 85KB

.rdata
Size: 166KB - Virtual size: 166KB

.data
Size: 31KB - Virtual size: 31KB

.rsrc
Size: 28KB - Virtual size: 27KB

.reloc
Size: 4KB - Virtual size: 4KB