ceac5f6fdbd76fcd4c6239a67aafc5be3cb1ffe4df79ff001a48066869f3f171

Sharing

Copy URL Twitter E-mail

General

Target

ceac5f6fdbd76fcd4c6239a67aafc5be3cb1ffe4df79ff001a48066869f3f171
Size

189KB
MD5

a35a92ae57258ed6536a560a018b96d2
SHA1

9d4a715d1e87cf74d63ff01cbcd0a746c1f1d84c
SHA256

ceac5f6fdbd76fcd4c6239a67aafc5be3cb1ffe4df79ff001a48066869f3f171
SHA512

7ccd70e2608a5e0e6efed4ef03a6560ccd035bf83b28e7562ba0a1ed8ca5d10a84e3b823b26ea3b473663c9f7000a0b2fbd6dd5f2e0261cbfffabfb488ade321
SSDEEP

3072:n0my2+gzgUZSIYNgMzLLAW7SC1Cjfj63WW8rT/oVjY3TNcy1/VT+ptU3OB:3y23DC3SrmWTrjYjn4T+fT

Score

N/A

Malware Config

Signatures

Files

ceac5f6fdbd76fcd4c6239a67aafc5be3cb1ffe4df79ff001a48066869f3f171
.dll windows x86

6a17e9b84fdc3697428f4d4ab323a646

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoReleaseMarshalData
CoGetMalloc
CLSIDFromString
PropVariantClear
CoUninitialize
StringFromIID
CoGetObjectContext
CLSIDFromProgID
CreateBindCtx
OleRegGetUserType

gdi32

GetBkColor
GetBkMode

user32

GetClassLongA
GetClipboardData
GetCapture
TranslateMDISysAccel
SetWindowTextA
GetMenuItemInfoA
RegisterWindowMessageA
CallNextHookEx
CreateIcon
GetScrollInfo
GetWindow
SendMessageW
OpenIcon
LoadCursorA
CreateMenu
GetClientRect
ClientToScreen
SetMenu
DestroyIcon
GetSysColorBrush
IsWindowEnabled
ActivateKeyboardLayout
CheckMenuItem
TranslateMessage
SendMessageA
DeleteMenu
WindowFromPoint
RemovePropA
DispatchMessageW
MoveWindow
ChildWindowFromPoint
ReleaseCapture
GetKeyboardLayoutList
DefFrameProcA
UnregisterClassA
GetKeyboardLayoutNameA
RegisterClassA
RegisterClipboardFormatA
GetMenuItemCount
IsWindowVisible
IsCharLowerA
SetWindowLongW
MessageBeep
SetWindowPos
CreatePopupMenu
SetForegroundWindow
wsprintfA
OemToCharA
SetActiveWindow
CharNextW
GetWindowThreadProcessId
DestroyWindow
GetMenu
GetClassInfoA
CreateWindowExA
GetParent
PostQuitMessage
ShowScrollBar
GetTopWindow
InvalidateRect
UnhookWindowsHookEx
MsgWaitForMultipleObjects
EqualRect
ScrollWindow

kernel32

GetProcAddress
GetCommandLineA
GetLastError
LoadLibraryA
VirtualAlloc
GetUserDefaultLCID
LockResource
CompareStringA
GlobalAddAtomA
lstrcmpA
GetLocalTime
SetLastError
GetStringTypeA
SetEndOfFile
GetLocaleInfoA
GetFileSize
GetCurrentThreadId
ExitProcess
GetThreadLocale
DeleteFileA
GetStdHandle
GetModuleFileNameA
GetCurrentProcess

Exports

Exports

_EFqP2AC0h
4mYRkHWvXS@12
mA4GKFUgL5
hBfd0A4jNbETu
NHDqiIW@4
_rGWZ6XNu0r@20
_icsJstGMP9z

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.aadata
Size: 145KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 212B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6a17e9b84fdc3697428f4d4ab323a646

Headers

File Characteristics

Imports

ole32

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 10KB - Virtual size: 154KB

.aadata Size: 145KB - Virtual size: 144KB

.data Size: 5KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 212B

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 10KB - Virtual size: 154KB

.aadata
Size: 145KB - Virtual size: 144KB

.data
Size: 5KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 212B

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 1KB - Virtual size: 1KB