aba9e302b2e4725571edca73449148f66644cfd98e2dc1c4f5600d2e409d7b7c

General

Target

aba9e302b2e4725571edca73449148f66644cfd98e2dc1c4f5600d2e409d7b7c
Size

148KB
MD5

4aceb796fc86f8b27b9aafa3e60c38e8
SHA1

57e6436e0dd99a99ff3612e68da748c209d2b338
SHA256

aba9e302b2e4725571edca73449148f66644cfd98e2dc1c4f5600d2e409d7b7c
SHA512

4cdbaa1b2638adf44f432bac51bbd26eb7ddc39b164696f8327e4c300eb7e13973fb8e70a904ed3c78a7c6149d6d7e4e19178338484e09fc739b8773ddfecc89
SSDEEP

3072:3MM/tPLa63HooECULg1ArwL24kcWoOKca6laoH76wzZ3NwZRC:8M/tPL/IoECULgKu2Zo8lrmwzlUY

Score

N/A

Malware Config

Signatures

Files

aba9e302b2e4725571edca73449148f66644cfd98e2dc1c4f5600d2e409d7b7c
.dll windows x86

a76c397fde6b756bd8e884fff6255155

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
DisableThreadLibraryCalls
GetModuleFileNameW
HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
WaitForSingleObject
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
InitializeCriticalSection
LCMapStringW
VirtualFree
VirtualQuery
VirtualAlloc
EnterCriticalSection
SetEvent
CloseHandle
ResetEvent
Sleep
WaitForMultipleObjects
CreateThread
DebugBreak
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetSystemTimeAsFileTime
LoadLibraryW
GetProcAddress
FreeLibrary
SetLastError
GetCurrentProcessId
CreateEventW
GetLocalTime
GetLocaleInfoW
DeleteCriticalSection
GetLastError

user32

ShowCaret

advapi32

RegOpenKeyW
GetLengthSid
InitializeSecurityDescriptor
InitializeAcl
AddAccessAllowedAce
IsValidAcl
SetSecurityDescriptorDacl
SetSecurityDescriptorGroup
SetSecurityDescriptorOwner
RegCreateKeyW
RegCloseKey
AllocateAndInitializeSid
EqualSid
FreeSid
IsValidSecurityDescriptor
RegDeleteKeyW
GetSecurityDescriptorLength
RegSetValueExW

msvcrt

printf
rand
strcpy
strcat
strlen
memset
strstr
iswspace
fprintf
wcschr
wcslen
wcscmp
free
malloc
wcsncpy
sscanf
atol

Exports

Exports

usyyouOiy

Sections

.text
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 417KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a76c397fde6b756bd8e884fff6255155

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

Exports

Exports

Sections

.text Size: 16KB - Virtual size: 13KB

.data Size: 100KB - Virtual size: 417KB

.rsrc Size: 24KB - Virtual size: 21KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 16KB - Virtual size: 13KB

.data
Size: 100KB - Virtual size: 417KB

.rsrc
Size: 24KB - Virtual size: 21KB

.reloc
Size: 4KB - Virtual size: 1KB