0989bb407801c65785962c31249604b5195529953d9aacadabce4b2fd9678eae

General

Target

0989bb407801c65785962c31249604b5195529953d9aacadabce4b2fd9678eae
Size

77KB
MD5

86f046b3597d5632388ac3f52da5b329
SHA1

db5134b1158fc91b15128a1941e419954a062860
SHA256

0989bb407801c65785962c31249604b5195529953d9aacadabce4b2fd9678eae
SHA512

27cd3e7644e815974aa9395b190aefdb0d6d91d9bd92bbcb9cdfe0c930cb85b5455eb3ba7cff9681bd35797b3a620594f7d8703e1efe652a79ecb80ef6771a23
SSDEEP

1536:iKnQq2DOCdRwp/A1/DexV44MoJiqOvapq2Nd:rQQO1rexV44MokqOvIqUd

Score

N/A

Malware Config

Signatures

Files

0989bb407801c65785962c31249604b5195529953d9aacadabce4b2fd9678eae
.dll windows x86

d27b493d02cc4fe657b443656cebc477

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
GetPrivateProfileSectionA
SetErrorMode
UnmapViewOfFile
WriteFile
HeapAlloc
GetFileSize
GetTickCount
GetTempPathA
SetUnhandledExceptionFilter
FindFirstFileA
FindFirstFileExA
ReadFile
SetFilePointer
GetFileAttributesA
GetCurrentProcess
LocalAlloc
GetProcessHeap
GetCurrentThreadId
GetCurrentProcessId
FindClose
CreateFileMappingA
GetModuleHandleA
SetLastError
GetPrivateProfileStringA
GetCurrentDirectoryA
CreateFileA
GetLastError
OpenProcess
GetFileInformationByHandle
RemoveDirectoryA
FindNextFileA
GetSystemTimeAsFileTime
UnhandledExceptionFilter
MapViewOfFile
CopyFileA
GetFullPathNameA
QueryPerformanceCounter
GetFileAttributesExA
DeleteFileA
FlushViewOfFile
SetEndOfFile
SetCurrentDirectoryA
ExpandEnvironmentStringsA
FreeLibrary
HeapFree
CloseHandle
LocalFree
SetFileAttributesA
GetTempFileNameA
TerminateProcess

user32

LoadIconA
GetSystemMetrics
LoadImageA
RegisterClassExA
FindWindowExA
GetClassLongA
UnregisterClassA
LoadCursorA

advapi32

AdjustTokenPrivileges
LookupPrivilegeValueA
ConvertStringSidToSidA
OpenProcessToken

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

gdi32

GetStockObject

Exports

Exports

MyAdjuusttToken
MyChhanngeDeskttop
MyEndProcPositioonn
MyGetttHandlee
MySetWiinndowPos

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d27b493d02cc4fe657b443656cebc477

Headers

File Characteristics

Imports

kernel32

user32

advapi32

version

gdi32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 40KB

.data Size: 35KB - Virtual size: 35KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 40KB - Virtual size: 40KB

.data
Size: 35KB - Virtual size: 35KB

.reloc
Size: 2KB - Virtual size: 1KB