5c119961bd4c34257d79545bab98c3aba8dc7bdcb4bf929de28232a29ea80929

Sharing

Copy URL Twitter E-mail

General

Target

5c119961bd4c34257d79545bab98c3aba8dc7bdcb4bf929de28232a29ea80929
Size

1.1MB
MD5

ccf4a0e10cfeed11fb196e0142e67a4a
SHA1

1026b85a8dcb0ea2e892b56fddd5dfda48b517f6
SHA256

5c119961bd4c34257d79545bab98c3aba8dc7bdcb4bf929de28232a29ea80929
SHA512

c7d08aec57d944d72affd04c8e4ba193a6da92c7106f9e5e6ad08af8df76f930f3d17f726525773f381f326afb73705a461be2b8c3f036f79443ce31ffe8b03d
SSDEEP

24576:zj2Qji85hkyZdSnJ7FtfeaiJj4ZNdt7HmRi94SL:zjZ5uCdSnJrf6l8NdtWi94S

Score

N/A

Malware Config

Signatures

Files

5c119961bd4c34257d79545bab98c3aba8dc7bdcb4bf929de28232a29ea80929
.dll windows x86

f7bfe817926aea6d4aa5bf204d91e135

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsDebuggerPresent
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

SetRect

gdi32

SetMapMode

shell32

ShellExecuteA

msvcr90

fseek

msvcp90

?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ

d3d9

Direct3DCreate9

winmm

sndPlaySoundA

wininet

InternetOpenUrlA

advapi32

RegQueryValueExA

Sections

_TEXT
Size: - Virtual size: 431B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: - Virtual size: 315KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vmp1
Size: - Virtual size: 726KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vmp2
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7bfe817926aea6d4aa5bf204d91e135

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

shell32

msvcr90

msvcp90

d3d9

winmm

wininet

advapi32

Sections

_TEXT Size: - Virtual size: 431B

.text Size: - Virtual size: 315KB

.rdata Size: - Virtual size: 88KB

.data Size: - Virtual size: 207KB

.rsrc Size: 1024B - Virtual size: 688B

.vmp0 Size: - Virtual size: 29KB

.vmp1 Size: - Virtual size: 726KB

.vmp2 Size: 1.1MB - Virtual size: 1.1MB

.reloc Size: 512B - Virtual size: 140B

_TEXT
Size: - Virtual size: 431B

.text
Size: - Virtual size: 315KB

.rdata
Size: - Virtual size: 88KB

.data
Size: - Virtual size: 207KB

.rsrc
Size: 1024B - Virtual size: 688B

.vmp0
Size: - Virtual size: 29KB

.vmp1
Size: - Virtual size: 726KB

.vmp2
Size: 1.1MB - Virtual size: 1.1MB

.reloc
Size: 512B - Virtual size: 140B