1f5aa1c83d793296901f54e2c9fa0a81af880ec91a0c28d4f8a49f5c5993f835

Sharing

Copy URL

Twitter E-mail

General

Target

1f5aa1c83d793296901f54e2c9fa0a81af880ec91a0c28d4f8a49f5c5993f835
Size

392KB
MD5

af921eedc318e80ccde3fe8b3986eba0
SHA1

9890ca6e27a3a58464188bdd4a920f8ed22c8aea
SHA256

1f5aa1c83d793296901f54e2c9fa0a81af880ec91a0c28d4f8a49f5c5993f835
SHA512

3083bdd819e09fb7873a097240658654972696c07e841f8777ffe30b6d53201a1d0978c8f31b8f64fac3f768e4ec5aac399637344664f0c4f52ab93800c5d802
SSDEEP

12288:+XJl7GyRH73qcHQ0f1v0xyinVqa416JNTn8K18z:Ol7vRHBsxyiVZTT0

Score

N/A

Malware Config

Signatures

Files

1f5aa1c83d793296901f54e2c9fa0a81af880ec91a0c28d4f8a49f5c5993f835
.dll windows x86

df607381043c698e58444e5f7e39aeac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterClassW
UnhookWindowsHookEx
TabbedTextOutW
SystemParametersInfoW
SwapMouseButton
SetShellWindow
SetPropW
SetProcessWindowStation
SetLastErrorEx
SetFocus
SendMessageW
ScrollWindowEx
ReleaseDC
ReleaseCapture
RegisterClassW
PtInRect
PostMessageW
PeekMessageW
ModifyMenuW
MapWindowPoints
LoadCursorW
IsWindowEnabled
IsIconic
InvertRect
GetWindowThreadProcessId
GetWindowTextW
GetWindowRect
GetTopWindow
CloseDesktop
CopyRect
CheckMenuItem
CreatePopupMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetNextDlgTabItem
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyboardLayoutList
GetKeyState
GetDlgItem
GetDC
GetClassInfoW
GetCapture
GetActiveWindow
FrameRect
EndDeferWindowPos
EnableMenuItem
EditWndProc
DrawTextW
DrawIconEx
DispatchMessageW
DestroyWindow

kernel32

lstrlenW
lstrcpynW
lstrcatW
_lread
WriteFileEx
WriteFile
WideCharToMultiByte
VirtualUnlock
VirtualQueryEx
VirtualFree
VirtualAlloc
TlsSetValue
TlsGetValue
TlsFree
Thread32Next
TerminateThread
SetEvent
SetErrorMode
RtlMoveMemory
ReadConsoleOutputAttribute
RaiseException
QueryPerformanceCounter
Process32NextW
Process32Next
Process32FirstW
Process32First
AllocConsole
CancelTimerQueueTimer
ConnectNamedPipe
ConvertDefaultLocale
CreateConsoleScreenBuffer
CreateToolhelp32Snapshot
DeleteAtom
DeleteTimerQueue
EnterCriticalSection
FatalExit
FillConsoleOutputAttribute
FlushConsoleInputBuffer
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetConsoleWindow
GetCurrentConsoleFont
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentStringsA
GetEnvironmentStringsW
GetEnvironmentVariableA
GetExitCodeThread
GetFileAttributesW
GetFileType
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetNumberOfConsoleInputEvents
GetOverlappedResult
GetProcAddress
GetProcessPriorityBoost
GetProcessVersion
GetStartupInfoA
GetStdHandle
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetTapeParameters
GetTapePosition
GetTickCount
GetUserDefaultLCID
GetVersion
GetVersionExA
GlobalAddAtomW
GlobalAlloc
GlobalFindAtomW
GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LCMapStringA
LCMapStringW
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
LocalReAlloc
MapUserPhysicalPages
MultiByteToWideChar
OpenProcess

dinput

DirectInputCreateA

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

comctl32

ord17

gdi32

SetTextColor
SetSystemPaletteUse
SetRectRgn
SetMapMode
SetDIBits
SelectObject
ScaleWindowExtEx
RestoreDC
OffsetViewportOrgEx
GetStockObject
GetDeviceCaps
SetViewportExtEx
GetBkColor
GetArcDirection
GdiPlayEMF
GdiFlush
ExcludeClipRect
EqualRgn
DeleteDC
CreateHatchBrush
CreateBitmap
ColorCorrectPalette
CloseMetaFile
SetViewportOrgEx
SetWindowExtEx
GetCharWidthI

Exports

Exports

Init
Number_Long
get_copyright
set_error_fn

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 202KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df607381043c698e58444e5f7e39aeac

Headers

File Characteristics

Imports

user32

kernel32

dinput

winspool.drv

comctl32

gdi32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.rdata Size: 202KB - Virtual size: 202KB

.data Size: 72KB - Virtual size: 72KB

.rsrc Size: 28KB - Virtual size: 27KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 84KB - Virtual size: 84KB

.rdata
Size: 202KB - Virtual size: 202KB

.data
Size: 72KB - Virtual size: 72KB

.rsrc
Size: 28KB - Virtual size: 27KB

.reloc
Size: 4KB - Virtual size: 3KB