df66d934cd27c02dd03607f35d3149e4dfe94300fe925ea873e2d4728ebe23ac

Sharing

Copy URL

Twitter E-mail

General

Target

df66d934cd27c02dd03607f35d3149e4dfe94300fe925ea873e2d4728ebe23ac
Size

192KB
MD5

52fd351498741badc17e0d3d7ec21607
SHA1

3231b8346b81009c5be4dff542a6059126779943
SHA256

df66d934cd27c02dd03607f35d3149e4dfe94300fe925ea873e2d4728ebe23ac
SHA512

f495c1c4721c931c3bfc3304a5ff67764e1627036c1811948b8e47cb0388d7dc18cc6e4573e918657600e2fc4bd2aee850f39d8b66f9056fcd1e681abb86acb5
SSDEEP

3072:HCOikWtcwvO59l3dkj8/JzQWrTEMHhnKbNSv8otkLs6gzWrnCsR653U+9X7SkXJP:HHkmJzzobIvZtr66Wrn/RyEi7N5P

Score

N/A

Malware Config

Signatures

Files

df66d934cd27c02dd03607f35d3149e4dfe94300fe925ea873e2d4728ebe23ac
.dll windows x86

0c72504ef54752b09be0cbe574e3278a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
GetWindowTextA
PtInRect
CharToOemA
SetScrollPos
EmptyClipboard
GetScrollRange
GetScrollInfo
IsWindowEnabled
GetWindowThreadProcessId
GetSysColorBrush
SetScrollInfo
GetCursorPos
RegisterClassA
SetRect
GetKeyboardLayoutNameA
ActivateKeyboardLayout
GetMenuItemInfoA
DestroyMenu
CreatePopupMenu
FillRect
TranslateMessage
GetMenu
ReleaseCapture
OemToCharA
DefMDIChildProcA
ReleaseDC
IsDialogMessageA
OpenIcon
SetTimer
RemoveMenu
IsIconic
MessageBoxA
LoadBitmapA
GetClassInfoA
wsprintfA
DrawTextA
GetClassNameA
GetDC
UnregisterClassA
EnableMenuItem
DrawIconEx
CharNextW
GetDesktopWindow
GetWindowLongA
GetScrollPos
CharLowerBuffA
PostQuitMessage
GetMenuItemCount
GetSysColor
GetKeyNameTextA
GetFocus
CharLowerA
LoadCursorA
UnhookWindowsHookEx
CheckMenuItem
SendMessageW
SetActiveWindow
GetTopWindow
IsMenu
SystemParametersInfoA
IsDlgButtonChecked
DrawFrameControl
IntersectRect

kernel32

FormatMessageA
SetThreadLocale
GetStdHandle
IsBadReadPtr
GetProcessHeap
GetCurrentThreadId
SetFilePointer
VirtualQuery
GlobalDeleteAtom
LoadLibraryExA
GlobalAlloc
FindFirstFileA
SizeofResource
VirtualAlloc
LocalAlloc
ResetEvent
VirtualFree
ExitProcess
EnterCriticalSection
GetVersionExA
lstrlenA
SetLastError
LoadLibraryA
lstrcmpiA

gdi32

GetTextAlign
GetTextColor
GetDCOrgEx

comctl32

ImageList_DragShowNolock
ImageList_Add
ImageList_Read
ImageList_Destroy
ImageList_Remove
ImageList_Create
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Write

Exports

Exports

_voiJYglKZ
AYhqKuk
_0MqcFSs
_farmU
vz0gp
1XdT8lnZWjRcU@20
_3dwSgLwsgMTjM@12
hNytbFdm7
7BPmW@20
_Pmk1FY9cw6fy79@12
oscxSUUkk

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.badata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c72504ef54752b09be0cbe574e3278a

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 9KB - Virtual size: 141KB

.data Size: 148KB - Virtual size: 148KB

.edata Size: 2KB - Virtual size: 2KB

.badata Size: 1KB - Virtual size: 1KB

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 9KB - Virtual size: 141KB

.data
Size: 148KB - Virtual size: 148KB

.edata
Size: 2KB - Virtual size: 2KB

.badata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB