6be54f7dd868a65deb9a04f668d31b5d763611f949d880baa3889665b6acaf13

Sharing

Copy URL Twitter E-mail

General

Target

6be54f7dd868a65deb9a04f668d31b5d763611f949d880baa3889665b6acaf13
Size

312KB
MD5

daeb1e352a2290419e51b81000058980
SHA1

84412d5131d9ca012d30067d735ce5cb22e6931b
SHA256

6be54f7dd868a65deb9a04f668d31b5d763611f949d880baa3889665b6acaf13
SHA512

f3ebda5ab72d76d33814b546b0154d1f999c2b0c8b2439e8387495a320ca3d6c5c24b32369e8b4a90fc9197d2e53ed02e0bd5d8771de36b92fd83cc40a60ed80
SSDEEP

6144:lZIcHc8CHYWr2VNxa31qSrUJH8Sd29hcxhFSj9fGv:lvHFC4LVNxXJH8SE9WxhkjZU

Score

N/A

Malware Config

Signatures

Files

6be54f7dd868a65deb9a04f668d31b5d763611f949d880baa3889665b6acaf13
.dll windows x86

dadbd3e2c353b0d3964579afe8ecd026

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CopySid
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
LsaSetSecret

gdi32

CreateDIBitmap
GdiStartDocEMF
SwapBuffers
FloodFill

kernel32

VirtualAlloc
EnumSystemLocalesA
GetSystemPowerStatus
FindResourceW
FreeLibrary
GetFileAttributesW
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetVersion
InterlockedCompareExchange
InterlockedExchange
LoadLibraryExW
LoadLibraryW
LoadResource
MultiByteToWideChar
OutputDebugStringA
SizeofResource
Sleep
lstrcmpiW
lstrlenW
CloseHandle
CreateFileW
DefineDosDeviceW
DeleteVolumeMountPointW
DeviceIoControl
FindFirstVolumeMountPointW
FindFirstVolumeW
FindNextVolumeMountPointW
FindNextVolumeW
FindVolumeClose
FindVolumeMountPointClose
FormatMessageW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
GetVolumeNameForVolumeMountPointW
LocalAlloc
LocalFree
QueryDosDeviceW
QueryPerformanceCounter
RemoveDirectoryW
SetFileAttributesA
SetUnhandledExceptionFilter
SetVolumeMountPointW
TerminateProcess
UnhandledExceptionFilter
WriteConsoleW
WriteFile
lstrcmpW
GetLocalTime
GetLocaleInfoA
lstrcpynW
IsBadReadPtr
GetStringTypeA
WideCharToMultiByte
GetLastError
GetStringTypeW
ReadFile
GetTimeFormatA
GetDateFormatA
GetCommandLineA
GetVersionExA
DeleteFileW
HeapFree
HeapAlloc
HeapReAlloc
ExitProcess
CompareStringA
CompareStringW
TlsAlloc
SetLastError
GetCurrentThread
TlsFree
TlsSetValue
TlsGetValue
RaiseException
VirtualProtect
GetSystemInfo
VirtualQuery
GetCPInfo
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
SetStdHandle
EnterCriticalSection
LeaveCriticalSection
FlushFileBuffers
FatalAppExitA
GetTimeZoneInformation
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetUserDefaultLCID
IsValidLocale
IsValidCodePage
RtlUnwind
GetACP
GetOEMCP
InitializeCriticalSection
LoadLibraryA
LCMapStringA
LCMapStringW
SetConsoleCtrlHandler
HeapSize
IsBadCodePtr
GetLocaleInfoW
SetEnvironmentVariableA

ole32

CoGetCallerTID
IIDFromString
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoCreateGuid
OleConvertOLESTREAMToIStorage
CreateILockBytesOnHGlobal

oleaut32

SafeArrayCopyData
OleCreatePropertyFrameIndirect
SysAllocString
VarI4FromBool

rpcrt4

CStdStubBuffer_DebugServerRelease
RpcEpRegisterA
RpcSmFree

user32

CharNextW
GetClipCursor
LoadStringW
CharToOemW
GetWindowLongW
GetListBoxInfo

Exports

Exports

qoznpzypez

Sections

.text
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dadbd3e2c353b0d3964579afe8ecd026

Headers

File Characteristics

Imports

advapi32

gdi32

kernel32

ole32

oleaut32

rpcrt4

user32

Exports

Exports

Sections

.text Size: 216KB - Virtual size: 214KB

.rdata Size: 56KB - Virtual size: 53KB

.data Size: 24KB - Virtual size: 31KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 216KB - Virtual size: 214KB

.rdata
Size: 56KB - Virtual size: 53KB

.data
Size: 24KB - Virtual size: 31KB

.reloc
Size: 12KB - Virtual size: 9KB