7ab2f41abdf8766bac6f8069dea4aa6b14504812ebc21b430bde6cbe0de3aefc

Sharing

Copy URL

Twitter E-mail

General

Target

7ab2f41abdf8766bac6f8069dea4aa6b14504812ebc21b430bde6cbe0de3aefc
Size

32KB
MD5

8c15edbda96f6ff0df547e8160dc8f44
SHA1

4d106b06e1fb5252eecb807716cec9ae63967921
SHA256

7ab2f41abdf8766bac6f8069dea4aa6b14504812ebc21b430bde6cbe0de3aefc
SHA512

e4aa9376f84a690127a50f7d2523f2f30095f18587513df60c62733af2505ae18c6215dbcc45a736ea2f42035b7405db07d903a149bbdfa539f287044965f1d7
SSDEEP

768:rsCxl7BYvcgZ7B0jKSaXYaKuy7sFZv++09tg:Zb1GBB0jWXz9FZv++092

Score

N/A

Malware Config

Signatures

Files

7ab2f41abdf8766bac6f8069dea4aa6b14504812ebc21b430bde6cbe0de3aefc
.dll windows x86

66767c012482a18301a77187f8aec07c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
GetFileAttributesW
ReadProcessMemory
VirtualQueryEx
ReadFile
GetFileSize
CreateFileA
SetFilePointer
HeapAlloc
GetProcessHeap
GetWindowsDirectoryA
Sleep
GetTempPathA
GetModuleHandleA
FindClose
FindFirstFileA
GetProcAddress
FreeLibrary
DeleteFileA
GetLastError
MultiByteToWideChar
WideCharToMultiByte
GetCurrentProcessId
OpenProcess
TerminateProcess
GetCurrentProcess
GetModuleFileNameA
LoadLibraryA

user32

CallNextHookEx
GetDC
UnhookWindowsHookEx
SetWindowsHookExA
GetClassNameW
GetWindow
wsprintfA
GetWindowRect

advapi32

IsTextUnicode

msvcrt

_strupr
_itoa
_strcmpi
free
strcpy
memset
malloc
sprintf
strlen
??3@YAXPAX@Z
wcscmp
??2@YAPAXI@Z
fclose
ftell
fseek
fopen
mbstowcs
strncpy
strstr
_snprintf
rand
srand
time
wcslen
wcsncat
wcscpy
wcsstr
strrchr
exit
memcpy
_except_handler3
_local_unwind2
tolower
_vsnprintf

wininet

InternetCloseHandle

gdi32

DeleteDC
BitBlt
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
CreateDCA
DeleteObject

Exports

Exports

Install
Uninstall

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

shared
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66767c012482a18301a77187f8aec07c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

wininet

gdi32

Exports

Exports

Sections

.text Size: 17KB - Virtual size: 16KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 2KB

shared Size: 512B - Virtual size: 4B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 17KB - Virtual size: 16KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 2KB

shared
Size: 512B - Virtual size: 4B

.reloc
Size: 1KB - Virtual size: 1KB