7cc0f7decbf73525bca9c7ef4afbd4296cf79e447e34ecdf6e7b49838dadaa5c

General

Target

7cc0f7decbf73525bca9c7ef4afbd4296cf79e447e34ecdf6e7b49838dadaa5c
Size

26KB
MD5

d5d50dc2aafb30e1837619571bcf0480
SHA1

1d492c7688847c4c38c73d374a4fe4cc8c28404c
SHA256

7cc0f7decbf73525bca9c7ef4afbd4296cf79e447e34ecdf6e7b49838dadaa5c
SHA512

0477f3111bf467d10fec8010eb94f3e387d9c064ec8790155e1b9ce8e45fedd4e40e99e9a092c484b9a6e5718408f01fca773b468126d63cad3e0fbb9509273b
SSDEEP

384:bqC+EmsYwR6t8XFvqvFO9qUHdKqsF1A4UsOdlbP4zWbqiFOXso:bjm0U81vqvGqU0lbA4SvP4K3o

Score

N/A

Malware Config

Signatures

Files

7cc0f7decbf73525bca9c7ef4afbd4296cf79e447e34ecdf6e7b49838dadaa5c
.dll windows x86

e76c29822c20c7e680b680526ce36634

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadProcessMemory
LoadLibraryA
ReadFile
GetFileSize
CreateFileA
GetTempPathA
SetThreadPriority
VirtualProtect
GetFileAttributesW
GetProcessHeap
HeapAlloc
OutputDebugStringA
GetModuleHandleA
CreateThread
CloseHandle
GetCurrentProcessId
CreateMutexA
GetLastError
WaitForSingleObject
TerminateThread
GetCurrentProcess
MultiByteToWideChar
TerminateProcess
WideCharToMultiByte
GetPrivateProfileStringA
GetProcAddress
Sleep
GetModuleFileNameA

msvcrt

_strlwr
_strdup
wcslen
wcsncat
wcscpy
wcsstr
malloc
exit
memcpy
isspace
isalnum
_vsnprintf
__dllonexit
_onexit
_initterm
_adjust_fdiv
_strcmpi
strstr
strlen
mbstowcs
wcscmp
_except_handler3
sprintf
strncpy
wcsncpy
strrchr
strcat
strcpy
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z
memset
free

gdiplus

GdipDisposeImage
GdipSaveImageToFile
GdiplusStartup
GdipGetImageEncoders
GdipCreateBitmapFromHBITMAP
GdipGetImageEncodersSize

gdi32

DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
CreateDCA
DeleteObject

ws2_32

closesocket
WSAGetLastError

user32

wsprintfW
GetWindow
GetClassNameW
GetForegroundWindow
wsprintfA

Sections

.text
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e76c29822c20c7e680b680526ce36634

Headers

File Characteristics

Imports

kernel32

msvcrt

gdiplus

gdi32

ws2_32

user32

Sections

.text Size: 16KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 3KB - Virtual size: 8KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 16KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 3KB - Virtual size: 8KB

.reloc
Size: 2KB - Virtual size: 1KB