464562fe34bd7e0bca4197e6f68c9f033c83126ab1e13da2314877c8584bfac4

General

Target

464562fe34bd7e0bca4197e6f68c9f033c83126ab1e13da2314877c8584bfac4
Size

32KB
MD5

46f2f9d9b09762234f71bfd4e297e4d0
SHA1

d3265f526f6c272de87152c0f6990285e6873b59
SHA256

464562fe34bd7e0bca4197e6f68c9f033c83126ab1e13da2314877c8584bfac4
SHA512

b4116e230d023d4a0d36014749a0a9ae34182968d3f4e51de8a0c7c29aef4f1cec55b8c785df0f875d450b007a588e215edc9f14a5f8dc5ae69844718aefe19b
SSDEEP

768:uF4tH0GmJeKERRcxZlUER0U+78eG3wm4IjKZg2f:3aGmJeVE0tKB4Lf

Score

N/A

Malware Config

Signatures

Files

464562fe34bd7e0bca4197e6f68c9f033c83126ab1e13da2314877c8584bfac4
.dll windows x86

96c25e67c6b6d930fb39be9ebe7d2a8c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GlobalAlloc
Sleep
InitializeCriticalSection
TerminateProcess
TerminateThread
IsBadReadPtr
GetPrivateProfileStringA
RaiseException
CloseHandle
WideCharToMultiByte
ReadProcessMemory
GetModuleHandleA
SetUnhandledExceptionFilter
ResumeThread
SetThreadContext
GlobalUnlock
OpenThread
GetCurrentThread
Process32Next
Process32First
CreateToolhelp32Snapshot
WriteProcessMemory
GlobalFree
EnterCriticalSection
LeaveCriticalSection
LoadLibraryA
GetProcAddress
GetCurrentProcess
GetCurrentThreadId
VirtualProtectEx
GetModuleFileNameA
CreateThread
GetCurrentProcessId
CreateMutexA
OpenMutexA
SuspendThread

user32

FindWindowA
GetWindowThreadProcessId
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx

ws2_32

WSASetLastError

wininet

InternetOpenA
InternetCloseHandle
InternetReadFile
InternetOpenUrlA

msvcrt

??3@YAXPAX@Z
_strupr
_stricmp
_adjust_fdiv
malloc
_initterm
free
wcslen
fopen
fread
fclose
strcat
sprintf
strcpy
strrchr
memcpy
atoi
strchr
memset
??2@YAPAXI@Z
strncpy
_strlwr
sscanf
strlen
strstr

Sections

.text
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sdata
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

96c25e67c6b6d930fb39be9ebe7d2a8c

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

wininet

msvcrt

Sections

.text Size: 17KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 4KB

sdata Size: 512B - Virtual size: 80B

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 17KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 4KB

sdata
Size: 512B - Virtual size: 80B

.reloc
Size: 3KB - Virtual size: 2KB