92362c9d78e5998c3d3df19e327d9f66713b37e16f4a5238c407a4baf475dd99

Sharing

Copy URL

Twitter E-mail

General

Target

92362c9d78e5998c3d3df19e327d9f66713b37e16f4a5238c407a4baf475dd99
Size

156KB
MD5

c6bc99a92fce67b381f48f3b68e13200
SHA1

0570573b07f9f09642d0530beea12ae6e1b351ad
SHA256

92362c9d78e5998c3d3df19e327d9f66713b37e16f4a5238c407a4baf475dd99
SHA512

1c65138c6fd7e28eefe8316e798679b4f3204e912e6ad272846bbe7e14022efe15c1940d3801d61a8ad94350fcd10685a8e3354feb93b2f6d6e173348f6f3361
SSDEEP

3072:ET0h8hrMXk13YQYVxkiLWBhF/KuC0PK5KisduMyk:QspXk1TWkQwhF/KL0PK5Kis2

Score

N/A

Malware Config

Signatures

Files

92362c9d78e5998c3d3df19e327d9f66713b37e16f4a5238c407a4baf475dd99
.dll windows x86

047805711f24a89645a0cf38a807eaf4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
CreateWindowExA
SendMessageA
IsWindow
MessageBoxA

kernel32

Sleep
lstrcatA
lstrlenA
GetLastError
SetLastError
ExitProcess
GetSystemDirectoryA
DisableThreadLibraryCalls
lstrcpyA
GetProcAddress
LoadLibraryA
GetTickCount

msvcrt

localtime
strftime
wcstombs
strncat
_errno
atoi
time
strncmp
strncpy
strrchr
_except_handler3
malloc
free
_CxxThrowException
??2@YAPAXI@Z
wcsstr
wcscpy
_beginthreadex
calloc
_adjust_fdiv
_initterm
_ltoa
__dllonexit
sprintf
??1type_info@@UAE@XZ
__CxxFrameHandler
strstr
_ftol
ceil
memmove
??3@YAXPAX@Z
_itoa
_strcmpi
_strrev
_strnicmp
_onexit

ws2_32

getsockname
ntohs
inet_addr
inet_ntoa
send
closesocket
recv
bind
socket
gethostbyname
htons
connect
setsockopt
WSACleanup
WSAStartup
sendto
recvfrom
__WSAFDIsSet
gethostname
select

msvcp60

?_Xran@std@@YAXXZ
?_Split@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXXZ
?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Refcnt@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEAAEPBD@Z
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB

advapi32

OpenSCManagerA
OpenServiceA
StartServiceA
RegOpenKeyA
RegSetValueExA
RegCloseKey
CloseServiceHandle
QueryServiceStatus
ChangeServiceConfigA
RegOpenKeyExA
RegCreateKeyA
CreateServiceA

msvcirt

??1ofstream@@UAE@XZ
?close@ofstream@@QAEXXZ
??1ios@@UAE@XZ
??_Dofstream@@QAEXXZ
?write@ostream@@QAEAAV1@PBDH@Z
?open@ofstream@@QAEXPBDHH@Z
?openprot@filebuf@@2HB
??0ofstream@@QAE@XZ
??_Dfstream@@QAEXXZ
??1fstream@@UAE@XZ
?close@fstream@@QAEXXZ
?read@istream@@QAEAAV1@PADH@Z
?open@fstream@@QAEXPBDHH@Z
??0fstream@@QAE@XZ

Exports

Exports

EnterThisPlease
LpkDllInitialize
LpkDrawTextEx
LpkEditControl
LpkExtTextOut
LpkGetCharacterPlacement
LpkGetTextExtentExPoint
LpkInitialize
LpkPSMTextOut
LpkTabbedTextOut
LpkUseGDIWidthCache
Main
_main@4
comdl2
comdl3
ftsWordBreak
hime
run

Sections

.text
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

047805711f24a89645a0cf38a807eaf4

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

ws2_32

msvcp60

advapi32

msvcirt

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 103KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 20KB - Virtual size: 22KB

.rsrc Size: 4KB - Virtual size: 920B

.reloc Size: 12KB - Virtual size: 8KB

.text
Size: 104KB - Virtual size: 103KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 20KB - Virtual size: 22KB

.rsrc
Size: 4KB - Virtual size: 920B

.reloc
Size: 12KB - Virtual size: 8KB