0154abdcbad0f7b57f927e0a51adf0e4c52d760aca56044dade744cc56bc4f0b

General

Target

0154abdcbad0f7b57f927e0a51adf0e4c52d760aca56044dade744cc56bc4f0b
Size

312KB
MD5

68c918f1402a8e3bcbe9ab28d82625f0
SHA1

0aded48d2715d03e714ab113a946c5fce483cc19
SHA256

0154abdcbad0f7b57f927e0a51adf0e4c52d760aca56044dade744cc56bc4f0b
SHA512

c146a9f0ab9b6a37f03b7f7c42270912209c6cfd593778941b8fcbd6db41ae4fb55e8704f5e76bc46e4256f39ec9127d0502a890927c8d78dc6e29bec04620db
SSDEEP

6144:3jDtcekSlnqOEWrZpNFcUJIPNTpeMmDadzoSq2cY1mtv:3fSekm7EWNwTZmDQzYY1O

Score

N/A

Malware Config

Signatures

Files

0154abdcbad0f7b57f927e0a51adf0e4c52d760aca56044dade744cc56bc4f0b
.dll windows x86

09bec7734da2df9f957a8ba3e16064cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetLastError
DeleteCriticalSection
GetProcAddress
GetCurrentThreadId
TlsAlloc
GetModuleFileNameA
GetStartupInfoA
LoadLibraryA
TlsSetValue
SetThreadPriority
EnterCriticalSection
TlsFree
GetVersionExA
TlsGetValue
GetTickCount
GlobalAlloc
SetLastError
CreateFileA
GetDateFormatA
VirtualFree
InitializeCriticalSection
VirtualAlloc
QueryPerformanceCounter
GlobalFree
IsBadReadPtr
Sleep
GlobalSize
GetModuleHandleA
LeaveCriticalSection

msvcrt

free
ftell
atol
fwrite
realloc
memcpy
getenv
strcmp
fread
_stricmp
fseek
fopen
sqrt
rand
calloc
bsearch
strstr
strtok
_CIpow
sprintf
fclose
strcpy
_iob
sscanf
exit
_ftol
atoi
memmove
fprintf
abort
fgets
strncmp
memset
_assert

user32

MessageBoxA
wsprintfA
ReleaseDC
WindowFromDC
GetWindowThreadProcessId
GetParent
GetWindowRect
GetDC

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

Exports

Exports

Display
ExtendInittab
FromVoidPtr
NewWrapper
StringAEncode
SyntaxError
Unicode

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09bec7734da2df9f957a8ba3e16064cd

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 102KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 44KB - Virtual size: 44KB

.rsrc Size: 80KB - Virtual size: 78KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 44KB - Virtual size: 44KB

.rsrc
Size: 80KB - Virtual size: 78KB

.reloc
Size: 8KB - Virtual size: 7KB