26a314db0f026b0254df646a17930bbc7d5a1ec07398ad1b1bfe8d4ce238b72a

General

Target

26a314db0f026b0254df646a17930bbc7d5a1ec07398ad1b1bfe8d4ce238b72a
Size

24KB
MD5

b94a351711b7669641a2712b85ceaa20
SHA1

56bca97f1b5ea7cbdcdb9e60f4667bd17d98676b
SHA256

26a314db0f026b0254df646a17930bbc7d5a1ec07398ad1b1bfe8d4ce238b72a
SHA512

190408da6a3db37fc71350d1b7f57e21501771a54fac074ca76de37ee8f56fef7a81a1d990bad38c5774713bebd3238f91bb8d477ef45349da937749f79c4ec9
SSDEEP

384:+GlMaCOgJTJqswcT7HCHvzYmCNa8QcUanw6LsZvWnOIx+HgE:maCOtYT7ikmaMcUCxspuqA

Score

N/A

Malware Config

Signatures

Files

26a314db0f026b0254df646a17930bbc7d5a1ec07398ad1b1bfe8d4ce238b72a
.dll windows x86

79dfd2fb1428e312b86de27c0918d96a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
Sleep
VirtualProtect
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
TerminateProcess
OpenProcess
IsBadReadPtr
DeleteFileA
GetFileSize
CloseHandle
ReadFile
SetFilePointer
CreateFileA
GetProcAddress
lstrcpynA
GetProcessHeap
GetLastError
GetModuleHandleA
GetPrivateProfileStringA
GetModuleFileNameA
HeapAlloc
LoadLibraryA

user32

ToAscii
wsprintfA
GetKeyState
GetKeyboardState
MapVirtualKeyA

advapi32

LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges

wininet

InternetCloseHandle

msvcrt

atoi
isalpha
isdigit
_strdup
realloc
_strcmpi
_strupr
strchr
??3@YAXPAX@Z
free
strcpy
memset
malloc
strcat
sprintf
strlen
strstr
_except_handler3
strncpy
strcmp
memcpy
strrchr
_vsnprintf
__CxxFrameHandler
_local_unwind2
_stricmp

wsock32

recv
connect
htons
socket
WSAStartup
send
gethostbyname
closesocket

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79dfd2fb1428e312b86de27c0918d96a

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wininet

msvcrt

wsock32

Sections

.text Size: 15KB - Virtual size: 14KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 512B - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 15KB - Virtual size: 14KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 512B - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB