5e8d5fa87d4e911fc8d21ec74d74c1a9ad722fa1e03a98967dd941a2d55ec15a

Sharing

Copy URL

Twitter E-mail

General

Target

5e8d5fa87d4e911fc8d21ec74d74c1a9ad722fa1e03a98967dd941a2d55ec15a
Size

157KB
MD5

24dd73e059694858beb9a5bdfe740ca4
SHA1

97600f7c49cfb68ea1577cae41922403cefed010
SHA256

5e8d5fa87d4e911fc8d21ec74d74c1a9ad722fa1e03a98967dd941a2d55ec15a
SHA512

d0d207acad3ec04d14689411eb5ce71a2cde823244c8f8c7b3ca1c9a01ea172cff3e672ca1b94d50d1d385f441ba71415c4564590d1fed343d50aba8b40c426a
SSDEEP

3072:lgy+mDmGt0hgYRbOAJxt0s5xm0cZIRGruSQ7fNCdr5:+y3mtRSAX1xJcZIRTSuId

Score

N/A

Malware Config

Signatures

Files

5e8d5fa87d4e911fc8d21ec74d74c1a9ad722fa1e03a98967dd941a2d55ec15a
.dll windows x86

fdd48e5d476f97821341c069148a2b6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

AddAce
ChangeServiceConfigW
CloseServiceHandle
ControlService
ConvertStringSecurityDescriptorToSecurityDescriptorW
InitializeSid
OpenSCManagerW
OpenServiceW
RegCloseKey
RegCreateKeyExW
RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegSetKeySecurity
RegSetValueExW

setupapi

CMP_Report_LogOn
SetupCloseLog
SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiOpenDevRegKey
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
CM_Create_DevNodeA

user32

ShowWindow
SetWindowTextW
SetWindowLongW
OffsetRect
IsWindowEnabled
GetWindowTextW
GetWindowLongW
GetThreadDesktop
GetParent
EndDialog
EnableWindow
DialogBoxParamW
SendMessageW

shell32

ShellExecuteW
SHSetUnreadMailCountW
SHOpenFolderAndSelectItems

kernel32

CloseHandle
GetCurrentThreadId
GetCurrentProcess
GetComputerNameW
ExitProcess
DisableThreadLibraryCalls
DeviceIoControl
CreateFileW
CompareStringW
GetModuleHandleA
GetModuleHandleW
lstrcmpiW
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetLastError
GetLastError
MultiByteToWideChar
LocalAlloc
GetWindowsDirectoryW
GetTickCount
GetSystemTimeAsFileTime
GetProcAddress

gdi32

CloseEnhMetaFile

msvcrt

wcscmp
_except_handler3

Exports

Exports

ADoTest
APCMOpen
AllocBuffers
FIsValidFileNameCharW
QueryMemStatus
SetCurrentIndex
StrToUintW

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdd48e5d476f97821341c069148a2b6b

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

setupapi

user32

shell32

kernel32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 71KB - Virtual size: 71KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 71KB - Virtual size: 71KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 8KB - Virtual size: 7KB