0a1979f20ed08397d2d835360eccaed2ce6421652f925037710c6b9a8d6609f5

Sharing

Copy URL

Twitter E-mail

General

Target

0a1979f20ed08397d2d835360eccaed2ce6421652f925037710c6b9a8d6609f5
Size

95KB
MD5

412183561b193826853e8dae59fc53a0
SHA1

290d2a6c7aab0c3b83030db736d78d5991cd6a1c
SHA256

0a1979f20ed08397d2d835360eccaed2ce6421652f925037710c6b9a8d6609f5
SHA512

bb6117ecbac116f34a330816363c2b608f69ac5a1df1ae82a714f6bcef3f234bd46e93698043c13d4e3597bfdb32a28b12c50bceb637e8d0621fdc7bc6476513
SSDEEP

1536:zJKhnwGuDLYhlJCw45ImFjRXTpMbsuyktCtik6R3Zyd6wuq4zB5IOOVRqqfxuL:zJQ7u759HIyktCQkE3sd6y4/aOzL

Score

N/A

Malware Config

Signatures

Files

0a1979f20ed08397d2d835360eccaed2ce6421652f925037710c6b9a8d6609f5
.dll windows x86

f8ef2cc15b80794913002845663520a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

PtVisible
ScaleWindowExtEx
SelectPalette
TextOutW
GetStockObject
GetTextExtentPointA
SetLayout
GetDeviceCaps
OffsetRgn
CreateFontW
RemoveFontResourceW
CreateRoundRectRgn
GetMapMode
CreatePalette
SetMapMode
GetTextExtentExPointW
GetTextExtentPointW
Rectangle
SetBitmapBits
FillRgn
LineDDA
CreatePen
PatBlt
SetAbortProc
DeleteDC
SetWindowExtEx
GetTextFaceW
GetFontData
CreateDIBSection
GetTextExtentPoint32A
CombineRgn
SetDIBitsToDevice
GetSystemPaletteEntries
EndPath
CreatePolygonRgn
BitBlt
CreateRectRgn
EndDoc
CreateBitmapIndirect
GetRgnBox
CreatePenIndirect
GetTextMetricsA
Ellipse
MoveToEx
GetTextAlign
BeginPath
GetSystemPaletteUse
WidenPath
EnumFontFamiliesExW
SetRectRgn
CreateFontA

kernel32

GetModuleFileNameW
FormatMessageW
GetStartupInfoA
CreateDirectoryA
GetCommModemStatus
WaitForMultipleObjects
Sleep
GetCurrentThread
GetBinaryTypeW
GetCurrentDirectoryW
ResumeThread
GetACP
GetAtomNameA
GetComputerNameA
SetLastError
TryEnterCriticalSection
ExitThread
SetCommBreak
GetLocaleInfoA
OpenFile
CreateEventW
VirtualQuery
ClearCommBreak
SetSystemTime
GetFileAttributesExA
MoveFileA
WriteFile
SetThreadAffinityMask
FileTimeToLocalFileTime
MoveFileExW
IsBadCodePtr
GlobalSize
SetTimerQueueTimer
CancelIo
FindNextChangeNotification
GlobalDeleteAtom
LoadLibraryW
CreateWaitableTimerA
EnumSystemLocalesA
SuspendThread
UnmapViewOfFile
VerSetConditionMask
HeapLock
GetCurrentThreadId
LockResource
GetVersionExA
SetNamedPipeHandleState
CreateFileMappingW
GetThreadPriority
GetBinaryTypeA
SetCurrentDirectoryA
SetWaitableTimer
GetTempPathW
GetThreadContext
ReleaseSemaphore

user32

AttachThreadInput
ValidateRect
UpdateWindow
RegisterClassA
SetCursor
DefFrameProcA
RedrawWindow
GetMenuItemRect
DialogBoxIndirectParamA
DefDlgProcA
GetTopWindow
GetMessagePos
SetWindowTextA
ExitWindowsEx
MapVirtualKeyW
GetActiveWindow
LoadStringW
RegisterClassW
OemToCharA
IsRectEmpty
GetSystemMetrics
DestroyWindow
GetClassInfoExA
GetFocus
GetShellWindow
GetMessageExtraInfo
GetClassInfoExW
GetUpdateRgn
GetMessageA
GetClassInfoW
CharToOemW
SetTimer
UnionRect
EnableScrollBar
WindowFromPoint
GetKeyboardLayoutNameW
EnumWindows
DrawFocusRect
GetMenuStringW
OpenIcon
CheckMenuItem
IsCharLowerA
SetScrollRange
EnableMenuItem
CharUpperBuffW
GetCursorPos
SetLastErrorEx
GetWindowDC
CheckDlgButton
CreateCaret
ToUnicodeEx
DefFrameProcW
FindWindowExA
CascadeWindows
CharPrevA
LoadMenuA
CallWindowProcW
GetMonitorInfoW
GetKeyboardType
BeginPaint
LoadCursorA
SystemParametersInfoA
IsMenu
CreateWindowExW
DialogBoxParamA
GetAltTabInfoW
GetMenu
CheckMenuRadioItem
AllowSetForegroundWindow
TranslateMessage
DefWindowProcA
GetLastActivePopup
ModifyMenuW
DrawIconEx
GetParent
DispatchMessageW
DestroyMenu
TranslateAcceleratorW
InvalidateRect
GetMessageTime
GetMenuItemID
GetWindowTextA
GetKeyboardLayout
SetMenuDefaultItem
SetScrollInfo
PostQuitMessage
IsZoomed
GetKeyState
ClientToScreen
GetDlgItemInt
ShowCursor
CreateDialogIndirectParamW
LoadMenuW
GetClipCursor
GetClassLongA
ChildWindowFromPoint
SendMessageW
GetScrollPos
CheckRadioButton
MapVirtualKeyA
GetPropW
VkKeyScanW
IsWindowEnabled
BringWindowToTop
EqualRect
MapVirtualKeyExW
TileWindows
SetMenuItemBitmaps
IsCharAlphaW
LoadCursorW
UnloadKeyboardLayout
IsChild
MessageBoxExA
DeferWindowPos
EndDialog
ChildWindowFromPointEx
ReplyMessage
WaitForInputIdle
SendMessageTimeoutW
wvsprintfA
CreateDialogParamA
DrawIcon

msvcrt

islower
iswspace
_controlfp
wcstol
wcscpy
__set_app_type
rand
__p__fmode
toupper
__p__commode
puts
realloc
_amsg_exit
wcstoul
_initterm
_acmdln
wcschr
sscanf
wcsncpy
towupper
fgets
exit
iswctype
gmtime
vsprintf
strncmp
iswalpha
wcspbrk
_ismbblead
strcoll
qsort
mbtowc
srand
isalpha
clearerr
wcscmp
wcsrchr
wcscspn
strtol
_XcptFilter
iswxdigit
_exit
atoi
wcscat
_cexit
strtok
__setusermatherr
__getmainargs

comdlg32

ChooseColorW
PrintDlgW
FindTextW
GetSaveFileNameA

Exports

Exports

InstallU
PluginCommand
PluginMain
PluginName
PluginType
PluginVersion
WSPStartup
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 9KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f8ef2cc15b80794913002845663520a9

Headers

File Characteristics

Imports

gdi32

kernel32

user32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 85KB

.rsrc Size: 66KB - Virtual size: 65KB

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 9KB - Virtual size: 85KB

.rsrc
Size: 66KB - Virtual size: 65KB

.reloc
Size: 19KB - Virtual size: 19KB