d9f4c93f24cb8872b2f9718b1b57a093e98c852d5913823245dc341cc1bf02b1

Sharing

Copy URL Twitter E-mail

General

Target

d9f4c93f24cb8872b2f9718b1b57a093e98c852d5913823245dc341cc1bf02b1
Size

192KB
MD5

d038a5595b8515b55f3ba2eebebfd7f8
SHA1

0d764d534552cff6e1cd3569d858e2f140f11f30
SHA256

d9f4c93f24cb8872b2f9718b1b57a093e98c852d5913823245dc341cc1bf02b1
SHA512

57c6e06b1f40cdc85dedf3b1e18f1de55d391e16b7ebfd50e4ed89ad51123400b45d806d6f72c03e6bed72590e1c35df5225352cadefa39da8fe04baaba5d32e
SSDEEP

3072:HCOikWxcwvO59l3dkj8/JzQWrTEMHhnKbNSv8otkLs6gzWrnCsR653U+9X7SkXJP:HrkmJzzobIvZtr66Wrn/RyEi7N5P

Score

N/A

Malware Config

Signatures

Files

d9f4c93f24cb8872b2f9718b1b57a093e98c852d5913823245dc341cc1bf02b1
.dll windows x86

0c72504ef54752b09be0cbe574e3278a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
GetWindowTextA
PtInRect
CharToOemA
SetScrollPos
EmptyClipboard
GetScrollRange
GetScrollInfo
IsWindowEnabled
GetWindowThreadProcessId
GetSysColorBrush
SetScrollInfo
GetCursorPos
RegisterClassA
SetRect
GetKeyboardLayoutNameA
ActivateKeyboardLayout
GetMenuItemInfoA
DestroyMenu
CreatePopupMenu
FillRect
TranslateMessage
GetMenu
ReleaseCapture
OemToCharA
DefMDIChildProcA
ReleaseDC
IsDialogMessageA
OpenIcon
SetTimer
RemoveMenu
IsIconic
MessageBoxA
LoadBitmapA
GetClassInfoA
wsprintfA
DrawTextA
GetClassNameA
GetDC
UnregisterClassA
EnableMenuItem
DrawIconEx
CharNextW
GetDesktopWindow
GetWindowLongA
GetScrollPos
CharLowerBuffA
PostQuitMessage
GetMenuItemCount
GetSysColor
GetKeyNameTextA
GetFocus
CharLowerA
LoadCursorA
UnhookWindowsHookEx
CheckMenuItem
SendMessageW
SetActiveWindow
GetTopWindow
IsMenu
SystemParametersInfoA
IsDlgButtonChecked
DrawFrameControl
IntersectRect

kernel32

FormatMessageA
SetThreadLocale
GetStdHandle
IsBadReadPtr
GetProcessHeap
GetCurrentThreadId
SetFilePointer
VirtualQuery
GlobalDeleteAtom
LoadLibraryExA
GlobalAlloc
FindFirstFileA
SizeofResource
VirtualAlloc
LocalAlloc
ResetEvent
VirtualFree
ExitProcess
EnterCriticalSection
GetVersionExA
lstrlenA
SetLastError
LoadLibraryA
lstrcmpiA

gdi32

GetTextAlign
GetTextColor
GetDCOrgEx

comctl32

ImageList_DragShowNolock
ImageList_Add
ImageList_Read
ImageList_Destroy
ImageList_Remove
ImageList_Create
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Write

Exports

Exports

_voiJYglKZ
AYhqKuk
_0MqcFSs
_farmU
vz0gp
1XdT8lnZWjRcU@20
_3dwSgLwsgMTjM@12
hNytbFdm7
7BPmW@20
_Pmk1FY9cw6fy79@12
oscxSUUkk

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 141KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.badata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c72504ef54752b09be0cbe574e3278a

Headers

File Characteristics

Imports

user32

kernel32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 9KB - Virtual size: 141KB

.data Size: 148KB - Virtual size: 148KB

.edata Size: 2KB - Virtual size: 2KB

.badata Size: 1KB - Virtual size: 1KB

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 9KB - Virtual size: 141KB

.data
Size: 148KB - Virtual size: 148KB

.edata
Size: 2KB - Virtual size: 2KB

.badata
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 2KB - Virtual size: 1KB