74875d01b8c65d61535f4b6f0e5a7b6dff06802b6cacb0541ad0ab005527a205

Sharing

Copy URL Twitter E-mail

General

Target

74875d01b8c65d61535f4b6f0e5a7b6dff06802b6cacb0541ad0ab005527a205
Size

137KB
MD5

c20ce4d39ba0d9abf9b8a8d786a69155
SHA1

23749c1c21e06598f6bca781eaa58f98431af0a8
SHA256

74875d01b8c65d61535f4b6f0e5a7b6dff06802b6cacb0541ad0ab005527a205
SHA512

7806fab557ebc67088ac0461440d1070dfef6209cc2da468e064fedcda176d0d57011f509afe6a6529f22fb563ccb5336d5f973b51798d04fc1b906f94d80a05
SSDEEP

3072:ecIxS56XRwHpHJlsZ9jKG9dg8wa3cGVZjqudqq9jUD1aMf3P:ePm6ht2G9iqsGrq2GX

Score

N/A

Malware Config

Signatures

Files

74875d01b8c65d61535f4b6f0e5a7b6dff06802b6cacb0541ad0ab005527a205
.dll windows x86

9b4f0314d20fca9be4869f58628eaf10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalDeleteAtom
CreateDirectoryA
LCMapStringW
MoveFileW
GetProcessHeap
GetFullPathNameA
GetTimeZoneInformation
GetPrivateProfileIntW
WaitForMultipleObjectsEx
GetCurrentThreadId
GetFileAttributesA
lstrlenW
SystemTimeToFileTime
FormatMessageW
GetCurrentThread
DeleteFileW
CreateFileMappingW
LeaveCriticalSection
lstrcmpiA
GetProcAddress
FormatMessageA
DeleteCriticalSection
GetFileSize
lstrcpynA
CreateProcessW
MapViewOfFile
GetLocalTime
LockResource
FindResourceW
GetLocaleInfoA
TlsAlloc
RemoveVectoredExceptionHandler
GetLastError
AddVectoredExceptionHandler
CreateFileA
SetFilePointer
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
VirtualQuery
GetSystemInfo
VirtualProtect
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ReadFile
Sleep
GetModuleFileNameW
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LCMapStringA
RtlUnwind
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
GetModuleHandleW
InitializeCriticalSection
LoadLibraryA
GetModuleFileNameA
GetStdHandle
WriteFile
CloseHandle
SetLastError
TlsFree
TlsSetValue
TlsGetValue
GetOEMCP
GetACP
InterlockedDecrement
GetCPInfo
OutputDebugStringA
VirtualAlloc
HeapFree
VirtualFree
HeapCreate
EnterCriticalSection
SetUnhandledExceptionFilter
GetPrivateProfileStringW
IsBadStringPtrW
CreateDirectoryW
FileTimeToLocalFileTime
GetProcessHeaps
IsBadStringPtrA
InterlockedIncrement
GetEnvironmentVariableA
lstrlenA
GlobalUnlock
HeapDestroy
GetCurrentProcessId
FindFirstFileW
SetStdHandle
GetVersion
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
CreateFileW
IsBadReadPtr
GetDateFormatA
GetEnvironmentVariableW
GetVersionExA
GetCommandLineA
ExitProcess
GetModuleHandleA
HeapAlloc
HeapReAlloc
SystemTimeToTzSpecificLocalTime
FreeResource
WaitForSingleObject

user32

GetMenuItemID
GetDesktopWindow
DrawMenuBar
SetMenu
RedrawWindow
GetMenuItemInfoW
SetMenuItemInfoW
GetClassNameW
GetShellWindow
EndPaint
GetSubMenu
wsprintfA
GetDlgItemTextW
MsgWaitForMultipleObjects
GetWindowPlacement
EnumChildWindows
IsDialogMessageW
MapWindowPoints
EnableWindow
CreateDialogParamW
DeferWindowPos
CheckDlgButton
FrameRect
SendMessageA
SendDlgItemMessageA
ReleaseCapture
GetDlgCtrlID
GetWindowRect
SendMessageTimeoutW
DrawIconEx
GetClientRect
GetFocus
ShowWindow
SetWindowLongW
GetMenuStringW
SendDlgItemMessageW
GetWindowTextLengthW
CallWindowProcW
FindWindowExW
SetRect
RegisterClassExW
DialogBoxParamW
FillRect
CheckMenuItem
CopyIcon
CharUpperBuffW
SetWindowPlacement
CreateMenu
SetScrollPos
IsRectEmpty
ScrollWindowEx
GetForegroundWindow
SetClipboardData
SystemParametersInfoW
GetWindowLongW
ScreenToClient
CallNextHookEx
GetDC
GetParent
GetDlgItemTextA
SetForegroundWindow
EndDialog
SetActiveWindow

gdi32

SetBkMode
SetTextColor
ExtTextOutA
CreateSolidBrush
CombineRgn
DeleteObject
GetTextMetricsW
CreateHatchBrush
LineTo
CreatePen
GetDIBits
GetTextExtentPoint32A
SelectClipRgn
DeleteDC

comdlg32

GetOpenFileNameA
ChooseFontW

advapi32

GetUserNameA
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetDesktopFolder
ExtractIconExW
ExtractIconW

ole32

CoTaskMemFree
OleUninitialize
CoTaskMemAlloc
RevokeDragDrop

version

GetFileVersionInfoW

ws2_32

select
ioctlsocket
WSAStartup

comctl32

ImageList_DragEnter
InitCommonControlsEx
ImageList_GetIcon

winmm

PlaySoundA

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 69KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b4f0314d20fca9be4869f58628eaf10

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

version

ws2_32

comctl32

winmm

Sections

.text Size: 43KB - Virtual size: 42KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 69KB - Virtual size: 251KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 43KB - Virtual size: 42KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 69KB - Virtual size: 251KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 4KB