8d21008166a4ec93d5b79b2d7f69b301b8f9aecb43eac90a76e45e26710890b7

General

Target

8d21008166a4ec93d5b79b2d7f69b301b8f9aecb43eac90a76e45e26710890b7
Size

21KB
MD5

307314771d4fe12a809b54a8d78a5ebb
SHA1

b85a7881a64a0d81509c9ec5e0e0d6e0659142c7
SHA256

8d21008166a4ec93d5b79b2d7f69b301b8f9aecb43eac90a76e45e26710890b7
SHA512

de6468beaff859135db5514c9f7710268cb2d3f8f04902e17bd00fad4d5abcbc4927105e69c53d8d4243c62fd867de35c46dff7ca758bd4301d76b00fc6a374b
SSDEEP

384:XuW9Gnr5CHdLATycAqXacHJKAW4feMFqalW3i+XCRg:XdGnr5CedAuBHJKgUaA5qg

Score

N/A

Malware Config

Signatures

Files

8d21008166a4ec93d5b79b2d7f69b301b8f9aecb43eac90a76e45e26710890b7
.dll windows x86

1e294f9ea43bfc264bbab3e1fcfec54b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetCurrentProcessId
GetCurrentProcess
TerminateProcess
GetLastError
CreateMutexA
TerminateThread
Process32Next
GetFileAttributesW
ReadProcessMemory
VirtualQueryEx
WideCharToMultiByte
Process32First
CreateToolhelp32Snapshot
ReadFile
GetFileSize
CreateFileA
SetFilePointer
VirtualProtect
Sleep
GetProcessHeap
HeapAlloc
OutputDebugStringA
GetModuleHandleA
OpenProcess
VirtualProtectEx
WriteProcessMemory
CloseHandle
GetModuleFileNameA
CreateThread

msvcrt

strrchr
??3@YAXPAX@Z
wcslen
??2@YAPAXI@Z
wcsncat
wcscpy
wcsstr
exit
malloc
__CxxFrameHandler
memcpy
strcat
strstr
_vsnprintf
__dllonexit
_onexit
_initterm
_adjust_fdiv
_strcmpi
strcpy
sprintf
strncpy
strlen
memset
free
_except_handler3

user32

GetForegroundWindow
GetClassNameW
GetWindow
FindWindowA
MapVirtualKeyA
ToAscii
GetKeyboardState
wsprintfA

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e294f9ea43bfc264bbab3e1fcfec54b

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 7KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 7KB

.reloc
Size: 2KB - Virtual size: 1KB