73b790fef72a9b372ec576c94960d0ac12a80adc05fe680e062e555236ef3aff

Sharing

Copy URL Twitter E-mail

General

Target

73b790fef72a9b372ec576c94960d0ac12a80adc05fe680e062e555236ef3aff
Size

523KB
MD5

7a0822e41a99e8cd0e5a5595bd421654
SHA1

2c2f9fd8c9eb04a1eaef4d97e33924a1adb2df44
SHA256

73b790fef72a9b372ec576c94960d0ac12a80adc05fe680e062e555236ef3aff
SHA512

c2ea35c1937e2b36154c2c13c1025af8cac1d4e6353a47d743f0f4e1a31c2c53c7f8239d33a57b68a662c91e5cb207b3ce988121f9f1d1cc7d77e57aed244668
SSDEEP

12288:mnNhhbTRNXQ+9WFeYYavZX3FEYfq+Q28Vv9:UNhhbdC+9OeYYeZXBfZ89

Score

N/A

Malware Config

Signatures

Files

73b790fef72a9b372ec576c94960d0ac12a80adc05fe680e062e555236ef3aff
.dll windows x86

3dcbba5be426349447e7f09f1c38b28d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SaveDC
SetTextAlign
SetWindowExtEx
RestoreDC
StretchBlt
TextOutA
Rectangle
GetDeviceCaps
ExtCreatePen
DeleteMetaFile
DeleteDC
CreateRectRgnIndirect
CreateMetaFileA
SetWindowOrgEx
CreateCompatibleDC

oleaut32

LoadRegTypeLi
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
SysStringByteLen
SysStringLen

user32

LoadCursorA
OffsetRect
InvalidateRect
GetWindowLongA
GetShellWindow
GetParent
GetKeyState
GetDC
EqualRect
ReleaseDC
DestroyWindow
DefWindowProcA
CreateWindowExA
CharNextA
CallWindowProcA
BeginPaint
AttachThreadInput
SetFocus
SetWindowLongA
SetWindowPos
SetWindowRgn
ShowWindow
IsChild
EndPaint

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
LsaClose

ole32

CoTaskMemAlloc
CoTaskMemFree
CreateDataAdviseHolder
HICON_UserSize
HMETAFILE_UserFree
OleLoadFromStream
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleSaveToStream
ReadClassStm
WriteClassStm
CreateOleAdviseHolder

kernel32

TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
VirtualAlloc
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStdHandle
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
LoadResource
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA

Exports

Exports

AcquireThread
ReadObjectFromString
VaParse
create_info_struct
get_x_offset_pixels

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 188KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 154KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3dcbba5be426349447e7f09f1c38b28d

Headers

File Characteristics

Imports

gdi32

oleaut32

user32

advapi32

ole32

kernel32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 101KB

.rdata Size: 67KB - Virtual size: 67KB

.data Size: 188KB - Virtual size: 189KB

.rsrc Size: 154KB - Virtual size: 154KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 101KB - Virtual size: 101KB

.rdata
Size: 67KB - Virtual size: 67KB

.data
Size: 188KB - Virtual size: 189KB

.rsrc
Size: 154KB - Virtual size: 154KB

.reloc
Size: 10KB - Virtual size: 9KB