6818b43571d32e2d00aaf292fc56aec23d5f5fe506d0f1002d8b4face9788d83

Sharing

Copy URL

Twitter E-mail

General

Target

6818b43571d32e2d00aaf292fc56aec23d5f5fe506d0f1002d8b4face9788d83
Size

390KB
MD5

10b11515a55aac6ecaa0e6017752311c
SHA1

c894a3d233188a433346f45991caf80096d3858e
SHA256

6818b43571d32e2d00aaf292fc56aec23d5f5fe506d0f1002d8b4face9788d83
SHA512

58824282e4ad6cee39932f513c6bc90e57dbb140644f74251ea40b806ce6e1e638d39e2f773205aed47b010104614f9553517cb9e4d5889cb661af12c7ea8dbe
SSDEEP

6144:WQ6stFhAexYOScrxccV5AVts+3/5Kwk4wnHnNUxvcP6btjsjLFL+:WizhAScccVts+vcw3MnNUxAEjsjBS

Score

N/A

Malware Config

Signatures

Files

6818b43571d32e2d00aaf292fc56aec23d5f5fe506d0f1002d8b4face9788d83
.dll windows x86

6cf1835b22fede0b49fd2643a406dae0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfW
TranslateMessage
SetWindowTextA
PeekMessageA
GetWindowThreadProcessId
EnumChildWindows
DispatchMessageA
EnumWindows
GetClassNameA

kernel32

lstrlenW
lstrlenA
lstrcmpA
_llseek
WriteFile
BackupWrite
CloseHandle
CompareFileTime
CreateDirectoryA
CreateFileA
CreateFileMappingA
DebugBreak
DeleteAtom
ExitProcess
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FindVolumeClose
FormatMessageA
FreeLibrary
GetCPInfo
GetCommandLineA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileSize
GetLastError
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetStdHandle
GetSystemTime
GetSystemTimeAsFileTime
GetTickCount
GetVersion
GetVersionExA
GetVersionExW
HeapAlloc
HeapDestroy
HeapFree
InterlockedExchange
IsBadStringPtrA
LoadLibraryA
LoadResource
LocalFlags
LocalFree
MapViewOfFile
Module32NextW
MultiByteToWideChar
Process32NextW
QueryPerformanceCounter
ReadFile
ReadFileEx
RtlUnwind
SearchPathA
SetCommMask
SetFilePointer
SetLastError
SetPriorityClass
SetUnhandledExceptionFilter
SystemTimeToFileTime
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualAllocEx
VirtualFreeEx
WideCharToMultiByte

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

advapi32

RegOpenKeyExW
RegOpenKeyExA
RegCloseKey

dbghelp

ImageNtHeader
SymCleanup
SymEnumSymbols
SymFindFileInPath
SymFunctionTableAccess
SymGetTypeInfo
SymInitialize

ole32

CoUninitialize
CoInitialize
CoCreateInstance

msvcrt

_write
wctomb
wcsrchr
wcsncpy
_XcptFilter
__CxxLongjmpUnwind
__badioinfo
__dllonexit
__mb_cur_max
__p__winminor
__pioinfo
_amsg_exit
_atoi64
_commode
_errno
_execl
_fileno
_getche
_i64tow
_initterm
_iob
_isatty
_ismbblead
_ismbcdigit
_itoa
_lock
_lseeki64
_mbsnccnt
_onexit
_purecall
_read
_setjmp
_snprintf
_stricmp
_strlwr
_strncoll
_strrev
_strtime
_tolower
_wcsicmp
_wfindnext64
_wfopen
_wputenv
_wspawnl
_y0
atoi
calloc
clock
fclose
fopen
fprintf
free
gmtime
isalpha
isdigit
isleadbyte
isspace
isupper
iswprint
isxdigit
localeconv
malloc
mbtowc
memcpy
memset
printf
rand
realloc
setvbuf
sprintf
strchr
strncmp
strrchr
strstr
strtol
strtoul
swprintf
time
tolower
wcschr
wcsncmp

Exports

Exports

GetColumn
QueryAllDataA
Sourcef
Vec2Normalize

Sections

.text
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cf1835b22fede0b49fd2643a406dae0

Headers

File Characteristics

Imports

user32

kernel32

version

advapi32

dbghelp

ole32

msvcrt

Exports

Exports

Sections

.text Size: 69KB - Virtual size: 68KB

.rdata Size: 183KB - Virtual size: 183KB

.data Size: 69KB - Virtual size: 70KB

.rsrc Size: 64KB - Virtual size: 64KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 69KB - Virtual size: 68KB

.rdata
Size: 183KB - Virtual size: 183KB

.data
Size: 69KB - Virtual size: 70KB

.rsrc
Size: 64KB - Virtual size: 64KB

.reloc
Size: 3KB - Virtual size: 3KB