835cc248bd40f2ab7fcc06c9af63714a649db873a90f6992a2764e3b0678d701

Sharing

Copy URL Twitter E-mail

General

Target

835cc248bd40f2ab7fcc06c9af63714a649db873a90f6992a2764e3b0678d701
Size

127KB
MD5

463fa8ff4e6d07da854ab5571b523472
SHA1

a70218f5cab228510c8f3e719121f0c7f6841c62
SHA256

835cc248bd40f2ab7fcc06c9af63714a649db873a90f6992a2764e3b0678d701
SHA512

4c0dab1aa6bbfbcbf72a916e77ad69424efacd4afef0519347111b7790ed77e811d5394b53d5ce200640f5a5822d739a86977c87ed162c9f28067ac8cc2dd456
SSDEEP

3072:/ABlwaG44Y7cHIRGP5ju+Em79jZnU+ct4eilA:/YutYi5ju+EiNU+ct4z

Score

N/A

Malware Config

Signatures

Files

835cc248bd40f2ab7fcc06c9af63714a649db873a90f6992a2764e3b0678d701
.dll windows x86

7a8494d51fae46c190204f0d0a9be3fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
lstrcpyA
HeapAlloc
HeapFree
GlobalFree
VirtualAlloc
WideCharToMultiByte
GetEnvironmentStringsW
WriteFile
GetEnvironmentStrings
FreeEnvironmentStringsA
GetOEMCP
GlobalLock
FreeEnvironmentStringsW
GetModuleFileNameA
GetStartupInfoA
GetStdHandle
GetFileType
GlobalAlloc
VirtualFree
HeapCreate
HeapDestroy
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetModuleHandleA
GetProcAddress
GetCommandLineA
GlobalUnlock
MulDiv
GetACP
GetCPInfo
SetHandleCount

user32

PostQuitMessage
GetWindowTextA
GetClientRect
GetClassLongA
FillRect
BeginPaint
EndPaint
ScrollWindow
SetWindowLongA
GetWindowRect
ScreenToClient
MoveWindow
GetDC
ReleaseDC
IsZoomed
IsIconic
InvalidateRect
UpdateWindow
GetSystemMetrics
SetScrollRange
SetScrollPos
SetRect
OffsetRect
GetParent
GetDlgCtrlID
SendMessageA
DefMDIChildProcA
DefWindowProcA
GetWindowLongA
UnregisterClassA
LoadCursorA
RegisterClassA

gdi32

DeleteObject
SelectPalette
GetStockObject
RealizePalette

ltdis13n

ord127
ord135
ord132
ord122
ord126

ltfil13n

ord101
ord103

ltimg13n

ord100
ord122
ord105
ord110
ord109
ord102
ord116
ord112
ord101
ord118
ord120
ord119
ord123
ord117
ord115
ord168
ord106
ord104
ord103

ltkrn13n

ord108
ord145
ord124
ord144
ord151
ord123
ord107
ord133
ord112
ord125
ord150

lttwn13n

ord100
ord103

Exports

Exports

DllMain
L_BitmapWndProc
L_UseBitmapClass

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a8494d51fae46c190204f0d0a9be3fc

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ltdis13n

ltfil13n

ltimg13n

ltkrn13n

lttwn13n

Exports

Exports

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 1KB - Virtual size: 1KB

.data Size: 3KB - Virtual size: 3KB

.idata Size: 2KB - Virtual size: 2KB

.rsrc Size: 99KB - Virtual size: 99KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 1KB - Virtual size: 1KB

.data
Size: 3KB - Virtual size: 3KB

.idata
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 99KB - Virtual size: 99KB

.reloc
Size: 2KB - Virtual size: 1KB