6ad6359cd46b3a9c77439a88764f5f14ec939644efff48d7dbe1aec0000889e2

Sharing

Copy URL Twitter E-mail

General

Target

6ad6359cd46b3a9c77439a88764f5f14ec939644efff48d7dbe1aec0000889e2
Size

26KB
MD5

7a2ae91a2872cfb14d32653e4ffc5c43
SHA1

0c1a6039cf6c752c1dd49239a674e0f41189930a
SHA256

6ad6359cd46b3a9c77439a88764f5f14ec939644efff48d7dbe1aec0000889e2
SHA512

1cf83a848aad3a1bebc0f1152b66f425592ee438354c410102882438e4223ac853ca842944d5ba4ab2d0aa773f0296456f1e456c3868566a0cef40d5b01007a8
SSDEEP

384:zdsNcvKGYKc5iXn2WCdXes88EC4MSF7c3r90m8nLd6UjWc1WGYSh7qVaeZv7lN:zmeKWXnip6JChS1imm4zD3dwaqv3

Score

N/A

Malware Config

Signatures

Files

6ad6359cd46b3a9c77439a88764f5f14ec939644efff48d7dbe1aec0000889e2
.dll windows x86

cae148f026fe334a4cf594fc85be5fc6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatA
lstrcpyA
DeleteFileA
ExitProcess
GetModuleFileNameA
VirtualAlloc
GetSystemTime
lstrlenA
LocalAlloc
ReadFile
SetFilePointer
TerminateProcess
lstrlenW
VirtualQuery
GlobalMemoryStatus
GetSystemInfo
UnmapViewOfFile
GetFileSize
MapViewOfFile
CreateFileMappingA
GetCurrentDirectoryA
CreateThread
DisableThreadLibraryCalls
IsBadReadPtr
OpenFileMappingA
GetModuleHandleA
FreeResource
SizeofResource
LoadResource
FindResourceA
GetFileAttributesA
GetCurrentProcess
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
Sleep
GlobalAlloc
GlobalLock
CreateFileA
WriteFile
GlobalUnlock
GlobalFree
VirtualProtect
CloseHandle

user32

UnhookWindowsHookEx
GetClipboardData
GetDC
ReleaseDC
CloseClipboard
keybd_event
DrawTextA
SetWindowsHookExA
CallNextHookEx
CharLowerA
FillRect
OpenClipboard

msvcrt

_purecall
memmove
atoi
sprintf
strstr
memcpy
_itoa
strcpy
strcat
strncpy
free
strcmp
__CxxFrameHandler
strlen
??2@YAPAXI@Z
memset
malloc
wcscmp
??3@YAXPAX@Z
_EH_prolog

wininet

HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetOpenA
InternetReadFile
InternetCloseHandle

gdi32

DeleteDC
GetObjectA
GetStockObject
SetTextColor
GetDIBits
GetDeviceCaps
CreateSolidBrush
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateDCA
DeleteObject
SetBkColor
SelectPalette
RealizePalette
CreateFontA

gdiplus

GdiplusShutdown
GdiplusStartup
GdipSaveImageToFile
GdipLoadImageFromFile
GdipCloneImage
GdipDisposeImage
GdipFree
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipAlloc

netapi32

Netbios

Exports

Exports

SetHook
UnHook

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cae148f026fe334a4cf594fc85be5fc6

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

wininet

gdi32

gdiplus

netapi32

Exports

Exports

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 3KB - Virtual size: 5KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 3KB - Virtual size: 5KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 2KB - Virtual size: 1KB