fe3954bc088c43d1171ad6aa7673373e27dce94dccbb77d040b0066ee1e85dfe

Sharing

Copy URL Twitter E-mail

General

Target

fe3954bc088c43d1171ad6aa7673373e27dce94dccbb77d040b0066ee1e85dfe
Size

205KB
MD5

69e8049d0c8fe3c02592636eedc830c3
SHA1

e2055618cffe2d6374cee6ffb43101be9603d34e
SHA256

fe3954bc088c43d1171ad6aa7673373e27dce94dccbb77d040b0066ee1e85dfe
SHA512

26267e3552a37c47ac691e3678e68430409231c4b5ebe95fe68786710e3e6d6aaa2fb31699c746e9f411cbf76a22216ab1c43a904cbfc961464c78d16c551e91
SSDEEP

3072:ccTT2TXDWVTjpQOjCexeOlX76X3XsT/xb4u9EZteABKGp2yJcGdCb64pFVMUot:Vn6DWZjprHxeE76Xw/xb4CAJMy5Ab61

Score

N/A

Malware Config

Signatures

Files

fe3954bc088c43d1171ad6aa7673373e27dce94dccbb77d040b0066ee1e85dfe
.dll windows x86

6cf8a5f2e10a86cdc7f60638de011bc9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadIconA
MoveWindow
SetTimer
CallNextHookEx
GetWindowLongA
ChildWindowFromPoint
ScrollWindow
DrawMenuBar
GetTopWindow
PeekMessageW
BeginPaint
PostMessageA
GetMenuState
ReleaseCapture
WindowFromPoint
EndPaint
SetWindowLongW
OffsetRect
SetRect
GetSystemMetrics
SetFocus
CharUpperA
CreateWindowExA
CreatePopupMenu
DrawTextA
SetWindowLongA
RemovePropA
GetActiveWindow
GetKeyboardLayoutNameA
GetDC
CharLowerBuffA
GetWindowRect
GetKeyboardState
CharToOemA
LoadStringA
CharNextW
GetMenuItemID
SetWindowPlacement
MsgWaitForMultipleObjects
GetWindowLongW
wsprintfA
IsChild
PostQuitMessage
EnumThreadWindows
GetMenu
IsWindowEnabled
SetClipboardData
SendMessageA
LoadCursorA
SetMenuItemInfoA
DefWindowProcA
InvalidateRect
GetMenuStringA
GetMessagePos
GetLastActivePopup
MessageBeep
UnregisterClassA
DestroyIcon
ShowScrollBar
EnableScrollBar
OpenIcon
TranslateMDISysAccel
FindWindowA

oleaut32

GetErrorInfo
SafeArrayGetUBound
VariantChangeType
SysAllocStringLen
RegisterTypeLib
SafeArrayCreate

kernel32

GetProcessHeap
VirtualAllocEx
GetDateFormatA
VirtualQuery
GetTickCount
ExitProcess
LocalAlloc
LoadLibraryA
lstrcpyA
GetLastError
GetCurrentProcessId
GetUserDefaultLCID
WaitForSingleObject
GetCommandLineW
GetEnvironmentStrings
GetLocalTime
RaiseException
Sleep
WriteFile
FindClose
lstrlenA
GetOEMCP
MulDiv

gdi32

GetBkColor
GetPixel
CopyEnhMetaFileA

Exports

Exports

_RMv4M@8

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 301B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.badata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cf8a5f2e10a86cdc7f60638de011bc9

Headers

File Characteristics

Imports

user32

oleaut32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.rdata Size: 11KB - Virtual size: 142KB

.data Size: 149KB - Virtual size: 149KB

.edata Size: 512B - Virtual size: 301B

.badata Size: 2KB - Virtual size: 1KB

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 24KB - Virtual size: 23KB

.rdata
Size: 11KB - Virtual size: 142KB

.data
Size: 149KB - Virtual size: 149KB

.edata
Size: 512B - Virtual size: 301B

.badata
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 3KB - Virtual size: 3KB