2f57623aee272ce355532a48a38b7aeca7b0e75c5d59ffe0d3f1614ea4be3dfe

Sharing

Copy URL Twitter E-mail

General

Target

2f57623aee272ce355532a48a38b7aeca7b0e75c5d59ffe0d3f1614ea4be3dfe
Size

88KB
MD5

5e2df57c9c4c5c063e05e70dd53f8ee0
SHA1

6ec03a2eb7d26321550ef7f7d0311c48cf3cf653
SHA256

2f57623aee272ce355532a48a38b7aeca7b0e75c5d59ffe0d3f1614ea4be3dfe
SHA512

e709ab3271dd7bbc32ebb1f93f3749acc343aced87503c0fd7cca8affb430ab39e0dbb6e58fb9d3c0c2ca5521574eba9e001a6b6c2928c6d9fc4d1e800722e9c
SSDEEP

1536:DSTh72kNCuuGs54Uo6WCDkAnJ4E9P5ju7/a9Z9:G12kCpmUoRhiJ/PFuDa9Z

Score

N/A

Malware Config

Signatures

Files

2f57623aee272ce355532a48a38b7aeca7b0e75c5d59ffe0d3f1614ea4be3dfe
.dll windows x86

fa64e7181c750e864dfff693d04fb7f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

imm32

ImmReleaseContext
ImmGetContext
ImmGetCompositionStringA

kernel32

OpenProcess
GetCurrentProcessId
WriteProcessMemory
ReadProcessMemory
VirtualQueryEx
GetModuleFileNameW
CreateFileMappingA
HeapFree
GetProcessHeap
UnmapViewOfFile
GetLocalTime
OpenFileMappingA
OutputDebugStringA
WideCharToMultiByte
HeapAlloc
GetTickCount
CopyFileA
GetPrivateProfileStringA
GetCurrentProcess
GlobalFree
GlobalUnlock
GlobalHandle
GlobalAlloc
GetSystemDirectoryA
DeleteFileA
CreateFileA
CloseHandle
WriteFile
GetModuleFileNameA
GetFileInformationByHandle
CreateThread
GetModuleHandleA
LoadLibraryA
GetProcAddress
VirtualProtect
InterlockedExchange
Sleep
GetFileSize
ReadFile
GlobalLock
GetTempPathA
MapViewOfFile

user32

GetDC
ReleaseDC
SetRect
SendMessageA
GetKeyState
GetWindowRect
PostThreadMessageA
DispatchMessageA
GetForegroundWindow
CallNextHookEx
UnhookWindowsHookEx
FindWindowExW
GetWindowThreadProcessId
GetWindowLongA
FindWindowExA
GetWindowTextA
MsgWaitForMultipleObjects
PeekMessageA
TranslateMessage

gdi32

GetObjectA
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
GetDeviceCaps
BitBlt
DeleteObject
GetDIBits
DeleteDC

shell32

SHGetSpecialFolderPathA

ole32

CoCreateInstance

avifil32

AVIMakeCompressedStream
AVISaveOptionsFree
AVIFileRelease
AVIStreamRelease
AVIFileExit
AVIStreamWrite
AVIFileInit
AVIFileOpenA
AVIFileCreateStreamA
AVIStreamSetFormat

msvfw32

ord2

winmm

waveInAddBuffer
waveInOpen
waveInClose
waveOutOpen
waveOutWrite
waveOutClose

shlwapi

SHGetValueA
SHSetValueA

msvcp60

??0_Lockit@std@@QAE@XZ
??1_Lockit@std@@QAE@XZ

msvcrt

abs
strftime
localtime
memcmp
strcmp
vsprintf
_memicmp
wcslen
atol
strcat
strchr
_access
_stricmp
atoi
fflush
fwrite
fclose
fopen
_mkdir
fseek
strncmp
printf
free
_ftol
_CIacos
srand
_wcsnicmp
_strlwr
_CIpow
_adjust_fdiv
malloc
rand
rename
strcpy
__dllonexit
_onexit
_stat
__CxxFrameHandler
memcpy
??2@YAPAXI@Z
memset
memmove
time
sprintf
strlen
strstr
strrchr
strncpy
_initterm

Exports

Exports

GetDLLVer
partInit

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.SHARDAT
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fa64e7181c750e864dfff693d04fb7f2

Headers

File Characteristics

Imports

version

imm32

kernel32

user32

gdi32

shell32

ole32

avifil32

msvfw32

winmm

shlwapi

msvcp60

msvcrt

Exports

Exports

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 21KB - Virtual size: 42KB

.SHARDAT Size: 7KB - Virtual size: 6KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 21KB - Virtual size: 42KB

.SHARDAT
Size: 7KB - Virtual size: 6KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 4KB - Virtual size: 4KB