e106308192c9f9a22b501d7cf65b9bd2627d0c4deda5a29ed26cbe9a8f732086

Sharing

Copy URL Twitter E-mail

General

Target

e106308192c9f9a22b501d7cf65b9bd2627d0c4deda5a29ed26cbe9a8f732086
Size

364KB
MD5

32b2b20b499ede2bfb00935f5d75dee5
SHA1

ce0198574e6b8370315659233dd526a98ce0253e
SHA256

e106308192c9f9a22b501d7cf65b9bd2627d0c4deda5a29ed26cbe9a8f732086
SHA512

2c31cc36a57c9caafbd962ac653b5f0834bea4e607bf9132007c53ef0a76b39ef266cfaffe436c8b882bfd4d1f9943177802e4a175641bf762a005bd6d510432
SSDEEP

6144:WwllOwCKvF7xUeKspogTyjATt48XDAoI2SlzLKyb0ekaZNzkjkCw:nfCKvnpTx298zAoIiW0eCk

Score

N/A

Malware Config

Signatures

Files

e106308192c9f9a22b501d7cf65b9bd2627d0c4deda5a29ed26cbe9a8f732086
.dll windows x86

591b9ff6f15f6b54f97bc87eb04fd89c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

advapi32

RegEnumKeyExA
RegCloseKey
RegOpenKeyA
RegDeleteKeyA
RegFlushKey
RegCreateKeyExA
RegQueryValueExW
RegLoadKeyW
RegDeleteValueW
RegGetKeySecurity
RegEnumKeyA
RegReplaceKeyA
RegEnumKeyW
RegQueryInfoKeyW
RegLoadKeyA
RegCreateKeyW

user32

AlignRects
GetCursor
GetDlgItem
IsWindow
GetFocus
DialogBoxParamA
DrawIcon
CopyIcon
CalcMenuBar
LoadCursorA
CloseWindow
AppendMenuW
GetCursor
CopyImage
GetWindowTextA
CopyIcon
CreateIcon
DrawIcon
GetWindow
CloseWindow
LoadCursorA
GetFocus
DrawIconEx
GetDlgItem
InsertMenuA
IsWindow
LoadMenuA
GetWindowTextA
AppendMenuW
DrawIcon
GetCursor
CopyIcon
LoadCursorA
CloseWindow
DrawIconEx
InsertMenuA
CopyRect
BlockInput
EndDialog
GetWindow
DrawTextA

kernel32

CreateProcessA
GetComputerNameA
CreateDirectoryA
GetLastError
ReadConsoleW
WriteFile
FindFirstFileA
GetFileSize
CopyFileExW
Sleep
CopyFileA
GetCPInfo
GetFileTime
ExitThread
GetCommandLineA
GetConsoleMode

comctl32

ImageList_Read
ImageList_Create
ImageList_Draw
ImageList_DragEnter
ImageList_GetDragImage
ImageList_Replace
ImageList_DragLeave
ImageList_LoadImageA
ImageList_DrawIndirect
ImageList_AddIcon
ImageList_DragMove
ImageList_AddMasked
InitCommonControls
ImageList_GetImageCount
ImageList_Copy
ImageList_GetIcon
ImageList_BeginDrag
ImageList_Merge
ImageList_GetImageInfo
ImageList_LoadImage
ImageList_LoadImageW
ImageList_Copy
ImageList_GetIcon
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_DrawIndirect
InitCommonControls
ImageList_EndDrag
ImageList_DragLeave
ImageList_Merge

Sections

.tls
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.INIT
Size: 348KB - Virtual size: 347KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bbs
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 1024B - Virtual size: 944B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 240KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

591b9ff6f15f6b54f97bc87eb04fd89c

Headers

File Characteristics

Imports

advapi32

user32

kernel32

comctl32

Sections

.tls Size: 10KB - Virtual size: 9KB

.data Size: - Virtual size: 1KB

.rdata Size: - Virtual size: 1KB

.INIT Size: 348KB - Virtual size: 347KB

.bbs Size: 3KB - Virtual size: 2KB

.edata Size: 1024B - Virtual size: 944B

.reloc Size: 512B - Virtual size: 240KB

.tls
Size: 10KB - Virtual size: 9KB

.data
Size: - Virtual size: 1KB

.rdata
Size: - Virtual size: 1KB

.INIT
Size: 348KB - Virtual size: 347KB

.bbs
Size: 3KB - Virtual size: 2KB

.edata
Size: 1024B - Virtual size: 944B

.reloc
Size: 512B - Virtual size: 240KB