d71ba57e5b84a8f19da1a7d2301bdb115c3e425ad690b233441c042ee5f29e8b

Sharing

Copy URL

Twitter E-mail

General

Target

d71ba57e5b84a8f19da1a7d2301bdb115c3e425ad690b233441c042ee5f29e8b
Size

212KB
MD5

7435d736b5dda62c0a8ec8d43776e603
SHA1

2a302111f847c6d7be0fcccbb78ce75e2eb27773
SHA256

d71ba57e5b84a8f19da1a7d2301bdb115c3e425ad690b233441c042ee5f29e8b
SHA512

42715236d1a4fe9541cf06cc908476af6fe6ab30ed7325051865907fa2d888b40de76adadc3ed5a9a8478b641dfdde9036fa696f2bbb7f8a2acf006d28f4b252
SSDEEP

6144:/XzlKvoGsmBjTaewd9PKfIDtLZyI8K+LExPIivX:kwSYd9yGtL8I8rIll

Score

N/A

Malware Config

Signatures

Files

d71ba57e5b84a8f19da1a7d2301bdb115c3e425ad690b233441c042ee5f29e8b
.dll windows x86

85346e285d6b1b4faa404a28fee83c41

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowEnabled
IsWindowUnicode
RemovePropW
InsertMenuA
SetDlgItemTextA
ShowCaret
PostThreadMessageA
GetSubMenu
DrawTextW
OemToCharA
SendMessageTimeoutA
InSendMessage
SetScrollPos
LoadStringA
RegisterClassExW
wsprintfA
UnloadKeyboardLayout
DeleteMenu
IsDialogMessageW
DestroyMenu
PostThreadMessageW
CreateAcceleratorTableW
RegisterWindowMessageA
GetDialogBaseUnits
GetForegroundWindow
HideCaret
SetWindowLongW
SendMessageTimeoutW
CharUpperW
DestroyWindow
GetSystemMetrics
EnumWindows
GetKeyboardLayout
TrackPopupMenu
ExitWindowsEx
SetActiveWindow

kernel32

GlobalUnlock
TerminateThread
HeapCreate
GetPriorityClass
FormatMessageA
ConvertDefaultLocale
GetModuleHandleA
CancelWaitableTimer
lstrcpynW
SetHandleCount
FindResourceExA
lstrcatW
GetVersionExA
GetNumberFormatA
lstrlenW
FileTimeToSystemTime
GetCommConfig
GlobalHandle

advapi32

LookupPrivilegeDisplayNameA

gdi32

GetCharWidth32W
CreateRectRgnIndirect
PatBlt
SelectClipRgn
PolyBezier
CreatePenIndirect
SetMapMode
CreateEllipticRgnIndirect
StretchBlt
GetDIBits
EndDoc
SelectPalette
GetROP2
SetDIBitsToDevice
CreateCompatibleDC

msvcrt

_controlfp
isdigit
__set_app_type
putchar
__p__fmode
getenv
time
__p__commode
_amsg_exit
_initterm
_acmdln
iswdigit
exit
vsprintf
_ismbblead
_XcptFilter
_exit
_cexit
__setusermatherr
swscanf
fwrite
wcsncmp
__getmainargs

Exports

Exports

?TryEnterCriticalSectionJKDJHLJHKDljfjhl@@YGKEPA_WG@Z

Sections

.text
Size: 177KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 78B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.plus
Size: 1024B - Virtual size: 685B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

85346e285d6b1b4faa404a28fee83c41

Headers

File Characteristics

Imports

user32

kernel32

advapi32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 177KB - Virtual size: 176KB

.diag_y Size: 512B - Virtual size: 78B

.idat Size: 512B - Virtual size: 392B

.diag_x Size: 512B - Virtual size: 28B

.div Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.plus Size: 1024B - Virtual size: 685B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 177KB - Virtual size: 176KB

.diag_y
Size: 512B - Virtual size: 78B

.idat
Size: 512B - Virtual size: 392B

.diag_x
Size: 512B - Virtual size: 28B

.div
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.plus
Size: 1024B - Virtual size: 685B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 1KB