a2bd7ffd92004733fc40cad84301809b3c8e8da823fd15eee45b515750253c4b

Sharing

Copy URL Twitter E-mail

General

Target

a2bd7ffd92004733fc40cad84301809b3c8e8da823fd15eee45b515750253c4b
Size

289KB
MD5

423acdf74949d30bf4af55290b24b9a0
SHA1

e75a2b626266fec99ab49febeaf7dc530d65f029
SHA256

a2bd7ffd92004733fc40cad84301809b3c8e8da823fd15eee45b515750253c4b
SHA512

a6490e8067c21297961f427c39b6a9415f95d1c85ceaa1c98a6ccb8597d5c9db213cb911e203707ff176dadecdeb0eff6ee9ae02e380a8784e9f79fecfeee59a
SSDEEP

6144:t6sV7wOc49ey/LMz3dPmGvtaue+VuTRfjrB88VoBdN:t59JeQoTpJ4ue+QFrK8VCT

Score

N/A

Malware Config

Signatures

Files

a2bd7ffd92004733fc40cad84301809b3c8e8da823fd15eee45b515750253c4b
.dll windows x86

f38acf7c6277d2a657e3a7ca45a8ee3c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

WriteClassStm
OleSaveToStream
OleRegGetUserType
OleRegGetMiscStatus
OleRegEnumVerbs
OleLoadFromStream
OleFlushClipboard
CreateOleAdviseHolder
CreateDataAdviseHolder
CoTaskMemAlloc
CoCreateInstance

oleaut32

VariantClear
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
SysStringLen
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantInit
LoadRegTypeLi

advapi32

RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegCreateKeyExA

user32

GetClientRect
GetClassInfoExA
EqualRect
GetDC
DefWindowProcA
CreateWindowExA
CharNextA
GetFocus
GetKeyState
GetParent
GetWindowLongA
IntersectRect
InvalidateRect
IsChild
IsWindow
LoadCursorA
PtInRect
RegisterClassExA
ReleaseDC
SetFocus
SetWindowPos
SetWindowRgn
ShowWindow
UnionRect
UnregisterClassA
ValidateRect
DestroyWindow

gdi32

GetDeviceCaps
DeleteDC
GetRgnBox
CreateMetaFileA
CloseMetaFile
Rectangle
SaveDC
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutA
CreateRectRgnIndirect
DeleteMetaFile

kernel32

IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadResource
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
SetHandleCount
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStdHandle
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FlushInstructionCache
FindResourceA
SetLastError
SizeofResource
Sleep
TerminateProcess
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
HeapSize
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess

Exports

Exports

GetRestricted
Method_ClearFreeList
Number_Add
Number_Positive
Number_TrueDivide
UnicodeEncodeError
ZeroDivisiError
_strtoul
vLoadModule

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 62KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f38acf7c6277d2a657e3a7ca45a8ee3c

Headers

File Characteristics

Imports

ole32

oleaut32

advapi32

user32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 103KB - Virtual size: 103KB

.rdata Size: 62KB - Virtual size: 62KB

.data Size: 62KB - Virtual size: 63KB

.rsrc Size: 49KB - Virtual size: 49KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 103KB - Virtual size: 103KB

.rdata
Size: 62KB - Virtual size: 62KB

.data
Size: 62KB - Virtual size: 63KB

.rsrc
Size: 49KB - Virtual size: 49KB

.reloc
Size: 10KB - Virtual size: 10KB