4378eb0960f008343564ac8807922ee5533ace14d8b3988c137a587de2d2818a

General

Target

4378eb0960f008343564ac8807922ee5533ace14d8b3988c137a587de2d2818a
Size

128KB
MD5

49137d18384fd803ba519cd14352c580
SHA1

0b1991d4c9140ff24cd867913d548f2f5ed55bc7
SHA256

4378eb0960f008343564ac8807922ee5533ace14d8b3988c137a587de2d2818a
SHA512

b9db0545cd28dc22ec5abd8f8e1c6cafd001674de385c0bf6c670b39ce45fbfb4f7f075e5d3dff0922e3e3b85b2bc7584397c1efb8ec6cc34f226e761be63c72
SSDEEP

1536:W8kxgZkdbNwI+Y2uRicbu/TfT02qUOvfJjsD4HT7eaqwoKqD02Gc9wfWjIlx:WvGedNnzC/TfTbq7ID4H7YQQ9wfWjIl

Score

N/A

Malware Config

Signatures

Files

4378eb0960f008343564ac8807922ee5533ace14d8b3988c137a587de2d2818a
.dll windows x86

595572a1dc7982fff265a7129812957a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
InterlockedIncrement
GetCommandLineA
GetModuleFileNameA
CreateDirectoryA
CloseHandle
SetLastError
InterlockedCompareExchange
GetLastError
GetTickCount
Sleep
UnmapViewOfFile
CreateProcessA
CopyFileA
GetModuleHandleA
CreateEventA
ExitProcess
lstrlenA
GetProcAddress
EnterCriticalSection
OpenEventA
LocalFree
LoadLibraryA
lstrlenW
MapViewOfFile
WaitForSingleObject
InterlockedDecrement
ReleaseMutex

ole32

CoCreateGuid
OleCreate
OleSetContainedObject
CreateBindCtx
CoUninitialize
CoInitialize

user32

GetSystemMetrics
DestroyWindow
GetParent
GetMessageA
SetWindowLongA
RegisterWindowMessageA
CreateWindowExA
SendMessageA
TranslateMessage
DispatchMessageA
FindWindowA
GetClassNameA
KillTimer
PostMessageA
PostQuitMessage
DefWindowProcA
SetTimer
GetWindowLongA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA

Exports

Exports

fxnetSnap

Sections

.text
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

595572a1dc7982fff265a7129812957a

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 100KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 12KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 104KB - Virtual size: 100KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB