613f020286c457cb995238581d1f93b12f8f9d1b6e87c635298ee34a0960a25b

Sharing

Copy URL Twitter E-mail

General

Target

613f020286c457cb995238581d1f93b12f8f9d1b6e87c635298ee34a0960a25b
Size

116KB
MD5

61bb1684a35f6a5f096965a9b2a46d1a
SHA1

1090d25d36ba374711a01df490bef16e84f6ab7c
SHA256

613f020286c457cb995238581d1f93b12f8f9d1b6e87c635298ee34a0960a25b
SHA512

fc010d9ecf1cb86383b1fad936fa5aee6a1f65371d54d92c554ccbcc79d7aafe159577bfb333bcf0ac06bcb4f3f57e68e01e96fe1cf0d83606982d987f333473
SSDEEP

3072:L/jwN9zAzw8DSrSbG9rBg44TqFyYKS3B8o02D:LLwwFbGNMRTMB8hu

Score

N/A

Malware Config

Signatures

Files

613f020286c457cb995238581d1f93b12f8f9d1b6e87c635298ee34a0960a25b
.dll windows x86

cec98dd910a06f8d9b34af432951da99

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetHandleInformation
IsValidLocale
VirtualAlloc
GetProcAddress
GlobalMemoryStatus
WaitForSingleObject
HeapCompact
_lwrite
EnumDateFormatsA
SetWaitableTimer
WritePrivateProfileStructW
GetProfileIntW
VerLanguageNameW
GetConsoleAliasExesLengthW
WriteConsoleOutputAttribute
EnumCalendarInfoW
Thread32First
GetThreadPriority
FreeLibrary
GetStartupInfoW
BackupRead
CommConfigDialogW
SetConsoleFont
DuplicateConsoleHandle
FindFirstFileExW
GetConsoleScreenBufferInfo
GetLocalTime
LocalFlags
AreFileApisANSI
GetModuleHandleA
ConsoleMenuControl
DefineDosDeviceW
DebugActiveProcess
GetCurrentProcess
GlobalAddAtomA
SetEndOfFile
GetCurrentThread
WriteConsoleInputVDMW
IsProcessorFeaturePresent
OpenSemaphoreA
GetShortPathNameA
lstrcpyA
GetConsoleAliasExesA
TryEnterCriticalSection
CallNamedPipeA
Process32NextW
SetLastError
GetCommConfig
GetConsoleHardwareState
_lopen
SetConsoleActiveScreenBuffer
GetConsoleAliasExesLengthA
GetConsoleOutputCP
GetModuleFileNameW
GlobalUnlock
GetProcessAffinityMask
GetCommTimeouts
GetStdHandle
OpenFileMappingA
EnterCriticalSection
FreeConsole
FillConsoleOutputCharacterA
SetStdHandle
SetProcessShutdownParameters
BackupWrite
GetFileInformationByHandle
SetCurrentDirectoryA
GetConsoleAliasesLengthW
WriteProfileSectionW
GetVersion
GetEnvironmentStringsW
ResumeThread
FileTimeToDosDateTime
GetProfileSectionW
VerLanguageNameA
GetConsoleKeyboardLayoutNameW
SetFilePointerEx
GetConsoleMode
PulseEvent
GetFileSizeEx
GetSystemTime
GetStringTypeA
SetConsoleOutputCP
MapViewOfFile
PeekNamedPipe
GetCommState
GetVolumePathNameA
WaitForSingleObjectEx
InterlockedCompareExchange
Heap32Next
GetConsoleAliasesA
GetCPInfoExA
GetConsoleInputWaitHandle

shell32

StrRChrIA
StrChrW
StrRChrIW

shlwapi

ChrCmpIA
UrlCompareW
PathGetArgsA
ChrCmpIW
PathCanonicalizeA
SHRegOpenUSKeyA
PathAddBackslashA
PathFindExtensionA
SHDeleteEmptyKeyW
SHRegWriteUSValueW
PathIsSystemFolderW
PathIsURLW
PathUnquoteSpacesW
PathIsDirectoryA
PathAddExtensionA
StrPBrkA
SHRegCreateUSKeyA
PathStripToRootW
UrlGetLocationA
PathMakePrettyW
PathCombineA
StrFromTimeIntervalW
StrNCatW
PathMatchSpecA

version

VerFindFileW
GetFileVersionInfoSizeW
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoW
VerQueryValueW
VerFindFileA
VerInstallFileW
VerInstallFileA
GetFileVersionInfoSizeA

msvcrt

_mbsnbcat
_mbsnbicoll
_mbsupr
_wremove
_wstrtime
memset
fwprintf
_mbsset
fsetpos
_controlfp
_commit
printf
fread
_fpreset
_wexecl
__p__pwctype
_beep
fputs
floor
ferror
fputc
_tzname
_CIcosh
_endthread
sprintf
__p__wpgmptr
fprintf
_getsystime
_ismbbalpha
memchr
_strcmpi
mktime
_HUGE
_unlink
strspn
_spawnle
fseek
_y0
_mbsicmp
_setjmp
_fcloseall
fclose
_expand
_pwctype
fopen
system
__p__wenviron
_safe_fdivr
__unDName
_ismbclegal
iswalnum
feof
ftell
_fpclass
_winmajor
tolower
_mbsspn
fwrite
_longjmpex
_mbclen
_wtmpnam
_ismbbpunct
_mbsnextc

Exports

Exports

Bbeucxzi
Dsjdjww
Dznwxiu
Gflyqilzb
Jcfhzvy
Jpgyfc
Kxvxlyn
Mocurzt
Ugot
Wuhwhku
Zrqmrv

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cec98dd910a06f8d9b34af432951da99

Headers

File Characteristics

Imports

kernel32

shell32

shlwapi

version

msvcrt

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 52KB - Virtual size: 50KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 52KB - Virtual size: 50KB

.reloc
Size: 8KB - Virtual size: 6KB