7b6d0481124d26733ea2dad807839a2f3a070e2cd9cb627d8499563b6ae4a8d5

Sharing

Copy URL

Twitter E-mail

General

Target

7b6d0481124d26733ea2dad807839a2f3a070e2cd9cb627d8499563b6ae4a8d5
Size

112KB
MD5

2d5051d0f184e1291502b09fb3748b7d
SHA1

bfe7da621fd39f85e8dcfba2a4853eaaca7e6686
SHA256

7b6d0481124d26733ea2dad807839a2f3a070e2cd9cb627d8499563b6ae4a8d5
SHA512

feaafc73c5ec77742c6f5852ca04a8482b7c39c90f1466f5730f4ce66e955b559072f606222c63de9d77d9d90096489d35e435f6a51085f41d6db80e4c0e2642
SSDEEP

1536:ZJSZde1MnOHLsSMTVHJJoQ70RL13ed/yxAMKrH77a5q7H7hUVonQ:ZidV0sSMpHJJoQ74ud/Vrb7aQPy

Score

N/A

Malware Config

Signatures

Files

7b6d0481124d26733ea2dad807839a2f3a070e2cd9cb627d8499563b6ae4a8d5
.dll windows x86

e4572c95732e606be28ee6acb36aaff6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockFile
GetVersion
GlobalWire
InterlockedDecrement
SetConsoleHardwareState
WriteConsoleOutputAttribute
GetTapePosition
SetConsoleScreenBufferSize
GetTickCount
InterlockedIncrement
WriteConsoleInputA
RegisterWowBaseHandlers
FindFirstChangeNotificationW
VirtualQueryEx
SearchPathA
SetConsoleInputExeNameW
SetLastError
GlobalReAlloc
SetConsoleCP
SetCurrentDirectoryW
GetCurrencyFormatW
GetProcessPriorityBoost
DebugBreak
UnregisterWait
GetVolumeNameForVolumeMountPointA
GetHandleInformation
GetCurrentThreadId
GetNumberOfConsoleFonts
GlobalLock
lstrlenW
FreeLibrary
GetTapeParameters
LCMapStringA
GetSystemTime
LoadLibraryA
GetModuleHandleA
OpenConsoleW
UnhandledExceptionFilter
GetPrivateProfileSectionNamesW
GetLocalTime
ReadConsoleOutputCharacterA
SetConsoleMaximumWindowSize
IsValidLocale
GetProcAddress
GetUserDefaultLangID
VirtualAlloc

gdi32

SelectObject
GdiStartPageEMF
GetWinMetaFileBits
DeleteDC
CombineRgn
SetWorldTransform
SetPixelFormat
Chord
CreateFontIndirectExA
GetObjectA
CreateCompatibleBitmap
CreateICA
RemoveFontResourceExW
CopyEnhMetaFileW
GetStockObject
CreateCompatibleDC

shell32

ExtractAssociatedIconA
Shell_NotifyIconW
DoEnvironmentSubstW
SHGetSpecialFolderPathW
SHFileOperationA
SheSetCurDrive
ord179
InternalExtractIconListW
StrRStrW
SheGetDirA
SHAppBarMessage
StrNCmpIA
SHGetPathFromIDListA
SHUpdateRecycleBinIcon
StrNCmpA
SHQueryRecycleBinA
ExtractAssociatedIconExA
SHChangeNotify
ShellAboutA
SheChangeDirA
SHFormatDrive
StrRStrIA
FindExecutableW
StrCmpNIA
StrRChrA
DoEnvironmentSubstA
StrChrW
SHGetSpecialFolderLocation
SHGetSpecialFolderPathA
StrChrIA
SHLoadInProc
ord180
SHBrowseForFolderW
DragQueryPoint
StrRChrW
SHInvokePrinterCommandW
CommandLineToArgvW
StrStrW
DragAcceptFiles
ExtractAssociatedIconW
ExtractAssociatedIconExW
ExtractIconA
WOWShellExecute
SHFreeNameMappings
StrCmpNIW
SHGetDiskFreeSpaceA
DuplicateIcon
SHFileOperationW
SheChangeDirExW
SHInvokePrinterCommandA
StrStrIW
StrRChrIA
ExtractIconExA
SHGetInstanceExplorer
ShellAboutW
DragQueryFileW
SHGetPathFromIDListW
InternalExtractIconListA

winmm

mmioRead
mmioStringToFOURCCA
sndPlaySoundW
mci32Message
mciDriverYield
midiOutGetErrorTextA
auxGetDevCapsW
midiStreamClose
waveOutGetErrorTextW
joyGetDevCapsW
waveOutRestart
auxOutMessage
midiInStop
NotifyCallbackData
waveOutWrite
midiInAddBuffer
waveInGetNumDevs
joyReleaseCapture
waveOutReset
mciGetCreatorTask
mciSendCommandW
midiOutOpen
waveInReset
waveInClose
SendDriverMessage
waveInAddBuffer
mmTaskYield
midiInMessage
waveInGetDevCapsA
mciGetDeviceIDA
timeKillEvent
waveInPrepareHeader
mmioSetInfo
mmioStringToFOURCCW
waveInGetErrorTextA
timeGetDevCaps
midiInGetErrorTextW
mmDrvInstall
waveOutClose
waveInStop
timeBeginPeriod
mciSendStringW
mciSetDriverData
joy32Message
joySetThreshold
midiOutCacheDrumPatches
mixerGetID
timeGetTime
mixerGetLineInfoA
mixerGetControlDetailsW
wod32Message
mixerOpen
mciGetDeviceIDFromElementIDA
mciSendCommandA
waveOutGetPosition
PlaySoundA

msvcrt

_mbsnbicmp
fopen
fwrite
tolower
memset
sprintf
fputc
_cgets
_futime
isalnum
fprintf
fwprintf
fsetpos
feof
_fcloseall
ferror
fclose
ftell
_wexeclp
_unlink
fputs
_ismbcspace
fread
fseek
vswprintf
_filelengthi64
printf

Exports

Exports

Hauacn
Hzui
Ilxcnsid
Jldc
Lqkye
Oqphuq
Xfzdyjafwf
Xltfbdsppi

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4572c95732e606be28ee6acb36aaff6

Headers

File Characteristics

Imports

kernel32

gdi32

shell32

winmm

msvcrt

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 39KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 52KB - Virtual size: 48KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 40KB - Virtual size: 39KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 52KB - Virtual size: 48KB

.reloc
Size: 8KB - Virtual size: 5KB