ffe48fe50449235cfd6c72b5911ed41367bddd242388ff125bf377e9bac76933

Sharing

Copy URL Twitter E-mail

General

Target

ffe48fe50449235cfd6c72b5911ed41367bddd242388ff125bf377e9bac76933
Size

292KB
MD5

88f2b765f846712aa5ae0fa33b7b1540
SHA1

dd109e8934967aeb59a80c40c686c043a7b960c0
SHA256

ffe48fe50449235cfd6c72b5911ed41367bddd242388ff125bf377e9bac76933
SHA512

aaa808e50c2c8084341496243f44d7bc50c41f02ae06ded5fe45afdf3ef692fe1d7961a23c62b48422f6b708c3c68291b3693e226aea7cb4a2f1db9d83d7237e
SSDEEP

6144:hqfMFKYqpG/MLJN48tgOUxM8a8pa2hRz09Kvv1HXpB1WT:/K1G/WN4tOlD2nhBJn13j

Score

N/A

Malware Config

Signatures

Files

ffe48fe50449235cfd6c72b5911ed41367bddd242388ff125bf377e9bac76933
.dll windows x86

6f0cc1954f92b09c30c74cb4c73bddbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

LoadRegTypeLi
LoadTypeLi
OleCreatePropertyFrame
RegisterTypeLi
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetVartype
SafeArrayUnaccessData
SysAllocString
SysAllocStringByteLen
SysAllocStringLen
SysFreeString
SysStringByteLen
UnRegisterTypeLi
VarUI4FromStr
VariantChangeType
VariantClear
VariantInit
SysStringLen

user32

SetFocus
ReleaseDC
RegisterClassExA
SetWindowLongA
OffsetRect
IsWindow
IsGUIThread
IsChild
InvalidateRect
GetWindowLongA
GetParent
GetKeyState
GetFocus
GetClientRect
GetClassInfoExA
EndPaint
DrawIcon
CreateWindowExA
CharNextA
BeginPaint
SetWindowPos
SetWindowRgn
ShowWindow
SwitchToThisWindow
UnionRect
PtInRect

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
LsaEnumeratePrivilegesOfAccount

ole32

CoCreateInstance
CoCreateInstanceEx
CoImpersonateClient
CoTaskMemAlloc
CreateDataAdviseHolder
CreateOleAdviseHolder
OleLoadFromStream
OleNoteObjectVisible
OleRegEnumVerbs
OleRegGetMiscStatus
OleRegGetUserType
OleSaveToStream
WriteClassStm

kernel32

VirtualFree
VirtualAlloc
TerminateProcess
Sleep
VirtualProtect
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
VirtualQuery
WideCharToMultiByte
WriteFile
lstrcmpiA
lstrlenA
lstrlenW
SizeofResource
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcessId
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA

gdi32

Rectangle
GetDeviceCaps
GdiPlayPageEMF
RestoreDC
CreateRectRgnIndirect
CreateMetaFileA
CreateCompatibleDC
CloseMetaFile
SaveDC
SetTextAlign
SetWindowExtEx
SetWindowOrgEx
StretchBlt
TextOutA
DeleteMetaFile

Exports

Exports

GetBuffer
Int_FromLong
Member3_Set
Parse
UnicodeError
_rowbytes_threshold

Sections

.text
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 50KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f0cc1954f92b09c30c74cb4c73bddbc

Headers

File Characteristics

Imports

oleaut32

user32

advapi32

ole32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 100KB

.rdata Size: 74KB - Virtual size: 74KB

.data Size: 50KB - Virtual size: 51KB

.rsrc Size: 56KB - Virtual size: 55KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 101KB - Virtual size: 100KB

.rdata
Size: 74KB - Virtual size: 74KB

.data
Size: 50KB - Virtual size: 51KB

.rsrc
Size: 56KB - Virtual size: 55KB

.reloc
Size: 9KB - Virtual size: 9KB