b3bf55b7e10c6c2e1f12e5a7df5e0e1866709d06d4a1b8ecde5f139fcb526a70

Sharing

Copy URL Twitter E-mail

General

Target

b3bf55b7e10c6c2e1f12e5a7df5e0e1866709d06d4a1b8ecde5f139fcb526a70
Size

118KB
MD5

72b9dc346de4190b26c02e543cfa2d56
SHA1

7f3a8116622f4e2be03914bef3b55deb5a04ab42
SHA256

b3bf55b7e10c6c2e1f12e5a7df5e0e1866709d06d4a1b8ecde5f139fcb526a70
SHA512

b1063cd54b7cdfc3e7c7f9c37a7f2a09606c9bc18a144d7dc06b983c8ad1ef7a64fe9726db372115c09285ccb72b0dcb817ba35eaf1043b566d988dff9ef3b5c
SSDEEP

1536:lXV2fWdB7RmGToUllAfsWCC764gjRbk3YS8H7O8IWHSPH+ltpLs+zhLFypMh+WoL:lXVOWBlufyW64glbk472f2/1w0+WoAt

Score

N/A

Malware Config

Signatures

Files

b3bf55b7e10c6c2e1f12e5a7df5e0e1866709d06d4a1b8ecde5f139fcb526a70
.dll windows x86

f5095e1e4b52bfb504acad5574f2a319

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentThread
ExpandEnvironmentStringsW
Sleep
GetCurrentProcessId
FreeLibrary
GetProcAddress
LoadLibraryA
CloseHandle
WaitForSingleObject
CreateEventA
LocalAlloc
LocalFree
DisableThreadLibraryCalls
InitializeCriticalSectionAndSpinCount
FreeLibraryAndExitThread
WaitForSingleObjectEx
CreateThread
InterlockedCompareExchange
LoadLibraryExA
InterlockedExchange
GetVersionExW
LoadLibraryW
GetSystemDirectoryW
GetComputerNameW
GetModuleFileNameA
MultiByteToWideChar
CompareStringW
FormatMessageA
GetTempPathA
DeleteFileA
GetVersionExA
ReadFile
lstrcmpA
CreateFileA
GetDriveTypeA
WriteProfileStringA
SetFilePointer
LocalReAlloc
LocalUnlock
GetProfileStringA
GetPrivateProfileStringA
LocalLock
GetSystemDirectoryA
SearchPathA
GetWindowsDirectoryA
lstrlenA
lstrcmpiA
lstrcatA
MoveFileA
lstrcpyA
GetStringTypeA
LCMapStringW
GlobalFree
GlobalAlloc
lstrlenW
InterlockedDecrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCommandLineA
SetErrorMode
VirtualProtect
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
HeapReAlloc
VirtualAlloc
RtlUnwind
GetVersion
ExitProcess
GetModuleHandleA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
WriteFile
HeapAlloc
GetStringTypeW

user32

MessageBoxA

advapi32

RegOpenKeyA
RegCreateKeyExA
RegCreateKeyA
RegQueryValueExA
RegCloseKey
RegEnumValueA
RegSetValueExA

gdi32

RemoveFontResourceA
AddFontResourceA

ole32

CoTaskMemFree
CoLoadLibrary
CoFreeLibrary

rpcrt4

RpcBindingFree
NdrClientCall2

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f5095e1e4b52bfb504acad5574f2a319

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 12KB - Virtual size: 46KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 12KB - Virtual size: 46KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 4KB