1ed1691b974c92127adf2f0bf01f1bb994481c50d0ce6d3d3b2c93e29396d0fc

General

Target

1ed1691b974c92127adf2f0bf01f1bb994481c50d0ce6d3d3b2c93e29396d0fc
Size

88KB
MD5

33ddd94e515e3d79a7588cc9aafebd67
SHA1

dbe73be14672d8a3bcf32186ea5036b2db68e505
SHA256

1ed1691b974c92127adf2f0bf01f1bb994481c50d0ce6d3d3b2c93e29396d0fc
SHA512

536b843a555ff1d1ce895ea232291b31b0908bd1b61d0e60fd56283b808b5697705b67b0e20f12fb125618493ce603a5a9d0943b1f14e6dd8825a03ff9c057d2
SSDEEP

1536:9NxtZ/XW3MvrOszbXgfDfjYOKxrpfEKMPp3:9NlW3M7nXkDLYO8EKUp3

Score

N/A

Malware Config

Signatures

Files

1ed1691b974c92127adf2f0bf01f1bb994481c50d0ce6d3d3b2c93e29396d0fc
.dll windows x86

d8b9f940acd97104d411a64c7bae1f41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free
_onexit
__dllonexit
fopen
fprintf
fclose
memmove
sprintf
longjmp
_setjmp3
strncmp
strchr
strncpy
_ftol
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z

msvcp60

??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ

mfc42

ord924
ord535
ord858
ord4129
ord5683
ord2818
ord540
ord3663
ord5440
ord6383
ord5450
ord6394
ord800

kernel32

DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
VirtualProtect
MulDiv
LeaveCriticalSection
EnterCriticalSection

gdi32

CreateCompatibleDC
CreateDIBSection
SetMapMode
GetDeviceCaps
CreateFontA
SelectObject
SetTextColor
SetBkColor
SetTextAlign
GetTextExtentPoint32A
ExtTextOutA

Exports

Exports

VSMsgHelperFn1

Sections

.text
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8b9f940acd97104d411a64c7bae1f41

Headers

File Characteristics

Imports

msvcrt

msvcp60

mfc42

kernel32

gdi32

Exports

Exports

Sections

.text Size: 28KB - Virtual size: 26KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 12KB - Virtual size: 9KB

.rsrc Size: 4KB - Virtual size: 976B

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 28KB - Virtual size: 26KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 12KB - Virtual size: 9KB

.rsrc
Size: 4KB - Virtual size: 976B

.reloc
Size: 8KB - Virtual size: 7KB