694ef1c7e4b887e798512662667a99dfb34b081adcf8c9671463790f71a3f6e8

Sharing

Copy URL

Twitter E-mail

General

Target

694ef1c7e4b887e798512662667a99dfb34b081adcf8c9671463790f71a3f6e8
Size

446KB
MD5

e8c1461d672d7535cd6fd8173d2fe110
SHA1

4046ebda4eb57319e4438304117cc5e13a5767ab
SHA256

694ef1c7e4b887e798512662667a99dfb34b081adcf8c9671463790f71a3f6e8
SHA512

9e1fc719458b7c827dd0fb177560d9a953ec5445da43124cd2fa797cfecd4ef13c70056e6cd69dc0cade82f776fdaf7eebbf5bfb01da833bfcc6d53730350732
SSDEEP

6144:6/cRc1Qh291TnBnnpiUa+2LYaHSXPrziUV9wll7TWOWMLte0BU2TZSxyNfWyCfjv:AlB91lnu9LYbQl7TWOrLA0LLWyC7v

Score

N/A

Malware Config

Signatures

Files

694ef1c7e4b887e798512662667a99dfb34b081adcf8c9671463790f71a3f6e8
.dll windows x86

aea911ef8b89fcc5cbcc506bea53cb06

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
HeapCreate
HeapFree
HeapReAlloc
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
IsValidCodePage
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryA
LoadLibraryExW
LoadLibraryW
LocalAlloc
LocalFree
MapViewOfFile
MoveFileW
MulDiv
MultiByteToWideChar
OpenProcess
Process32FirstW
Process32NextW
QueryPerformanceCounter
RaiseException
ReadFile
RemoveDirectoryW
ResumeThread
GlobalUnlock
SetEndOfFile
SetEnvironmentVariableW
SetErrorMode
SetFileAttributesW
SetFilePointer
SetHandleCount
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileSectionW
WritePrivateProfileStringW
WriteProfileStringW
lstrcatW
lstrlenA
lstrlenW
GlobalLock
GlobalAlloc
GetWindowsDirectoryW
GetVersion
GetTimeFormatW
GetTickCount
GetSystemTimeAsFileTime
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProfileStringW
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetPrivateProfileStringW
GetPrivateProfileSectionW
GetOEMCP
GetNumberFormatW
GetModuleHandleW
CloseHandle
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileType
GetFileTime
GetFileSize
GetFileAttributesW
GetEnvironmentStringsW
GetEnvironmentStringsA
GetDateFormatW
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
FlushFileBuffers
FindNextFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnterCriticalSection
DeleteFileW
DeleteCriticalSection
CreateToolhelp32Snapshot
CreateThread
CreateProcessW
CreateFileMappingW
CreateFileA
CreateDirectoryW
RtlUnwind

user32

MessageBoxW
MoveWindow
OffsetRect
OpenClipboard
PostMessageW
PostQuitMessage
PtInRect
RegisterClassExW
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
ScreenToClient
SendMessageW
SetClipboardData
SetCursor
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemInfoW
SetPropW
SetTimer
SetWindowLongW
SetWindowPos
SetWindowTextW
ShowWindow
TrackPopupMenu
TranslateAcceleratorW
TranslateMessage
UnionRect
WaitForInputIdle
BeginDeferWindowPos
BeginPaint
CallWindowProcW
CheckDlgButton
MapWindowPoints
LoadStringW
LoadImageW
LoadIconW
LoadCursorW
LoadAcceleratorsW
IsZoomed
IsIconic
IsDlgButtonChecked
IsDialogMessageW
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuW
InflateRect
GetWindowThreadProcessId
GetWindowTextW
GetWindowRect
GetWindowLongW
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropW
GetParent
GetMessageW
GetMenu
GetIconInfo
GetFocus
GetDlgItemTextW
GetDlgItem
GetDC
GetCursorPos
GetClientRect
GetClassNameW
FindWindowW
FindWindowExW
EnumDisplaySettingsW
EnumChildWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawMenuBar
DrawFrameControl
DispatchMessageW
DialogBoxParamW
DialogBoxIndirectParamW
DestroyWindow
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
CreateWindowExW
CreateIconIndirect
CreateDialogParamW
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckMenuItem
DrawIconEx

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

gdi32

StartPage
StartDocW
SetTextColor
SetMapMode
SetBkMode
SetBkColor
SelectObject
GetTextMetricsW
GetTextExtentPoint32W
GetStockObject
GetObjectW
GetDeviceCaps
GetDIBits
GdiFlush
ExtTextOutW
EndPage
EndDoc
DeleteObject
DeleteDC
CreateFontIndirectW
CreateDIBSection
CreateCompatibleDC

advapi32

RevertToSelf
RegUnLoadKeyW
RegSetValueW
RegSetValueExW
RegSetKeySecurity
RegQueryValueW
RegQueryValueExW
RegQueryValueExA
RegQueryInfoKeyW
RegOpenKeyW
RegOpenKeyExW
RegOpenKeyExA
RegLoadKeyW
RegGetKeySecurity
RegEnumValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyW
RegCreateKeyExW
RegCloseKey
OpenServiceW
AdjustTokenPrivileges
AllocateAndInitializeSid
CloseServiceHandle
CryptAcquireContextW
CryptCreateHash
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptReleaseContext
DeleteService
EqualSid
FreeSid
GetAce
GetSecurityInfo
GetTokenInformation
ImpersonateLoggedOnUser
LookupAccountNameW
LookupAccountSidW
LookupPrivilegeValueW
OpenProcessToken
OpenSCManagerW
SetSecurityInfo

Exports

Exports

AnyFileFlags
GetLocals
chunk_location
set_error_fn
set_tRNS

Sections

.text
Size: 93KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 267KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 70KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aea911ef8b89fcc5cbcc506bea53cb06

Headers

File Characteristics

Imports

kernel32

user32

version

gdi32

advapi32

Exports

Exports

Sections

.text Size: 93KB - Virtual size: 92KB

.rdata Size: 267KB - Virtual size: 266KB

.data Size: 70KB - Virtual size: 71KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 93KB - Virtual size: 92KB

.rdata
Size: 267KB - Virtual size: 266KB

.data
Size: 70KB - Virtual size: 71KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 5KB - Virtual size: 5KB