5c0ff37103f39591fad781b8039af17062768ce0c6949e11e837b6368ae11de4

Sharing

Copy URL

Twitter E-mail

General

Target

5c0ff37103f39591fad781b8039af17062768ce0c6949e11e837b6368ae11de4
Size

116KB
MD5

4d4016897caa92304fb8a00ac6e19ccc
SHA1

b0378a9b980d88345c84cc45ccd33d2dadf396e7
SHA256

5c0ff37103f39591fad781b8039af17062768ce0c6949e11e837b6368ae11de4
SHA512

bb862654c9107211866380c6f84f6a05029419e27dc4bb17224e9097d1f21bf5721b861dd910e39e3c3aed944eff8d02877e78754b54231a33082efb10ad9d47
SSDEEP

3072:+su+98nb1e+OgbSGVSRKcU+5/Pa2d6I1n2r:Y+2b1e+7SRKcZ5PaS6Il

Score

N/A

Malware Config

Signatures

Files

5c0ff37103f39591fad781b8039af17062768ce0c6949e11e837b6368ae11de4
.dll windows x86

7cd1accd670bf28bfc5a2d1706f005a7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetCommBreak
PostQueuedCompletionStatus
ReadDirectoryChangesW
UnlockFileEx
GetStdHandle
GetDiskFreeSpaceExW
GetAtomNameA
GetConsoleInputExeNameA
UTUnRegister
OpenConsoleW
GetFileAttributesExW
FindNextFileW
FreeLibrary
Process32First
FindResourceA
InterlockedCompareExchange
LoadLibraryExW
WriteConsoleOutputA
GetHandleInformation
GetPrivateProfileSectionNamesW
SetConsoleCP
GetEnvironmentVariableA
GetConsoleKeyboardLayoutNameW
SetTimerQueueTimer
EnumDateFormatsA
ReleaseMutex
OpenJobObjectA
DeleteFiber
CreateFileMappingA
GetPrivateProfileIntW
CreateEventA
HeapAlloc
WriteConsoleInputA
GetModuleFileNameA
GetCommConfig
UpdateResourceW
ExitVDM
CloseHandle
DeleteVolumeMountPointA
ResumeThread
LocalSize
GetConsoleDisplayMode
ExpungeConsoleCommandHistoryW
GetProcAddress
GlobalWire
DeleteCriticalSection
WideCharToMultiByte
EnumDateFormatsExA
SetThreadLocale
WriteTapemark
EnumTimeFormatsA
GetComputerNameA
LoadLibraryA
GetSystemDefaultLCID
Thread32First
WriteFileGather
EnumSystemLocalesA
GetTimeFormatA
SearchPathA
RegisterWowBaseHandlers
IsBadReadPtr
GetConsoleAliasExesW
GetLocalTime
MulDiv
GetProfileIntW
FlushViewOfFile
GetProcessHeaps
_lwrite
GetConsoleCommandHistoryW
MapViewOfFile
BuildCommDCBAndTimeoutsA
FindFirstChangeNotificationW
EnumDateFormatsW
VerLanguageNameA
FindNextVolumeA
GetSystemInfo
CreateMutexW
GetConsoleAliasExesA
VDMOperationStarted
GetUserDefaultLangID
DefineDosDeviceA
IsValidLocale
SetPriorityClass
SetSystemPowerState
ReadConsoleInputW
IsProcessorFeaturePresent
VerLanguageNameW
FindFirstVolumeW
GetFileAttributesExA
GetVersion
VirtualAlloc
GetModuleHandleA
GetSystemTime

user32

LoadKeyboardLayoutA
CreateCursor
EndMenu
GetWindowDC
CreateIcon
GetUpdateRect
GetKeyboardType
GetSystemMenu
OpenDesktopW
EndDeferWindowPos
ShowWindowAsync
ExitWindowsEx
CopyRect
IsClipboardFormatAvailable
GetShellWindow
MessageBoxW
LoadCursorA
SetSystemCursor
DdeDisconnect
ShowCursor
SetClassWord
BringWindowToTop
AllowSetForegroundWindow
DlgDirSelectComboBoxExW
GetDlgItemTextW
IMPGetIMEA
GetScrollPos
SetWindowsHookA
DestroyIcon
SubtractRect
SetRect
DrawStateA
GetCursor
SetTimer
SetDeskWallpaper
GetClientRect
SendMessageA
SendNotifyMessageW
DeleteMenu
GetWindowInfo
GetSystemMetrics
SetWindowWord
MessageBoxA
CreatePopupMenu
DrawFrame
GetDC
UnregisterHotKey
MapVirtualKeyExA
PaintDesktop
GetKeyboardLayoutList
DdeConnectList
DdeCreateStringHandleW
GetLastActivePopup
CreateWindowExW
SetMenuInfo
CreateIconFromResource
GetClassInfoExA
CharPrevExA
SetCaretPos
CharToOemBuffW
ReleaseCapture
SetCursorPos
GetListBoxInfo
DispatchMessageW
CallWindowProcW
EnumChildWindows
TrackMouseEvent
DrawCaption
GetTopWindow
MonitorFromPoint

gdi32

DeleteDC
GetNearestColor
SetROP2
CreatePolyPolygonRgn
AddFontResourceW
GdiGetSpoolFileHandle
RemoveFontResourceA
CloseMetaFile
GetCharWidthA
DPtoLP
CopyEnhMetaFileW
CombineRgn
GetEnhMetaFileHeader
CreateRoundRectRgn
GetEnhMetaFileDescriptionA
CreateCompatibleBitmap
EndPath
EnumFontFamiliesExW
GetGlyphOutlineA
SetFontEnumeration
GetICMProfileW
SetPixelFormat
ScaleWindowExtEx
EndDoc
GetTextCharacterExtra
CreateBitmap
CreateMetaFileW
GetGlyphIndicesA
CopyMetaFileW
CreateDIBSection
Pie
GetEnhMetaFileA
GetTextExtentExPointA
RectInRegion
CreateEllipticRgn
SetPixelV
DeleteEnhMetaFile
GetLogColorSpaceW
AddFontResourceA
SaveDC
GetTextExtentPoint32W
CreateBitmapIndirect
FillRgn
GetDCPenColor
GetStockObject
CreateCompatibleDC
GetObjectType
GdiSetBatchLimit
GetRgnBox
CreateEnhMetaFileW
CreateFontIndirectW
DeviceCapabilitiesExA
UpdateICMRegKeyW
GetObjectA
SelectObject
GetTextFaceA
GetDIBits

version

VerFindFileA
GetFileVersionInfoA
GetFileVersionInfoSizeW
VerInstallFileW
VerInstallFileA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoW
VerFindFileW

winmm

sndPlaySoundW
joyGetDevCapsA
mmTaskYield
waveInGetID
timeGetTime
midiOutLongMsg
waveInGetErrorTextA
timeBeginPeriod
mciGetCreatorTask
midiDisconnect
timeGetSystemTime
wod32Message
waveOutPrepareHeader
mciGetDriverData
midiInGetDevCapsA
mmioOpenW
waveInStart
CloseDriver
mixerGetLineInfoW
mixerGetLineControlsA
PlaySoundA
mmioCreateChunk
midiInPrepareHeader
mmioClose
waveOutClose
mmioStringToFOURCCW
mixerClose
mciGetYieldProc
midiInStart
mmioRenameW
waveInPrepareHeader
mixerGetControlDetailsW
auxGetNumDevs
mod32Message
mmioOpenA
midiInAddBuffer
timeKillEvent
mixerGetControlDetailsA
waveInGetPosition
waveInUnprepareHeader
joyConfigChanged
midiOutUnprepareHeader
mixerGetID
midiInStop
SendDriverMessage
waveOutGetDevCapsW
mmioSetBuffer
mciGetDeviceIDW
joyGetPos
waveOutBreakLoop
mciSetDriverData
WOW32DriverCallback
waveOutWrite
aux32Message
waveInMessage
GetDriverModuleHandle
mciGetDeviceIDA
waveInClose
midiStreamOpen
mmGetCurrentTask
midiOutGetID
midiInMessage
waveOutPause
waveInStop
DriverCallback
mciDriverNotify
auxSetVolume
waveOutSetVolume
mciGetErrorStringW
mixerOpen
midiInGetErrorTextW
midiConnect
midiOutSetVolume
midiOutGetDevCapsA
joyGetPosEx
waveOutGetNumDevs
midiInReset
waveOutSetPitch
auxGetDevCapsW
mmioSeek
NotifyCallbackData
midiOutGetVolume
mmTaskCreate
mciSendCommandA
midiOutPrepareHeader
WOWAppExit
midiInGetID
midiStreamPosition
DrvGetModuleHandle
midiOutOpen
midiOutGetNumDevs
waveOutGetVolume
waveOutGetPosition
mid32Message
joySetCapture
midiOutGetErrorTextW
waveOutGetErrorTextW
auxGetVolume
waveInGetNumDevs
mmDrvInstall
joy32Message
midiInGetErrorTextA

msvcrt

_timezone
asctime
_kbhit
_mbscat
ferror
_ismbcdigit
_getdrive
_tell
_wexecl
asin
__iscsymf
scanf
div
_chsize
_strset
iswcntrl
_open_osfhandle
_execle
_wutime
fflush
_wcsrev
strftime
_ismbstrail
_wexecv
_wstrdate
_wfdopen
fclose
__setusermatherr
swprintf
_adj_fdiv_m16i
_mbsstr
ftell
_fdopen
_wsearchenv
_c_exit
memcpy
_ismbcalnum
_pctype
fopen
_flsbuf
_lsearch
iswprint
sprintf
__lconv_init
_atoldbl
_wspawnlp
_cprintf
__p___initenv
_wcsdup
wcscmp
_atodbl
_wctime
printf
_getws
feof
strtod
_mbsninc
_strdup
_wfreopen
_getdcwd
_msize
_wputenv
_wunlink
strcmp
fprintf
_mbscmp
_mbsnbset
_mbspbrk
_mbsnbicmp
_mbslen
_unlink
_ltoa
fwrite
_fileno
_wfindfirsti64
fwprintf
toupper
strrchr
fputs
_ismbckata
fsetpos
_ismbbkprint
_set_error_mode
_popen
_wfopen
_wasctime
memset
_mbcasemap
_wtempnam
fseek
fputc
frexp
_mbsnbcpy
_fstat
_putws
fread
_heapadd
_mbsnbicoll
_spawnle
_finite
_strerror
_mbcjistojms
strtok
_statusfp
_getmbcp
_osver
_heapwalk
_getw
_adj_fdiv_m32

Exports

Exports

Ahvyjgib
Hmkvkzwp

Sections

.text
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7cd1accd670bf28bfc5a2d1706f005a7

Headers

File Characteristics

Imports

kernel32

user32

gdi32

version

winmm

msvcrt

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 36KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 52KB - Virtual size: 51KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 40KB - Virtual size: 36KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 52KB - Virtual size: 51KB

.reloc
Size: 8KB - Virtual size: 5KB