d132f2d6b096956852d38fabeb7bb90585f51a0c802b1d3bb6b8ec5bf62c313b

General

Target

d132f2d6b096956852d38fabeb7bb90585f51a0c802b1d3bb6b8ec5bf62c313b
Size

212KB
MD5

60e753fc1af24ac0a74534be1ba1671b
SHA1

7d3591d2edaf75c1c29f98112fce3e460af9a171
SHA256

d132f2d6b096956852d38fabeb7bb90585f51a0c802b1d3bb6b8ec5bf62c313b
SHA512

f94f6319e95591783376190c549cbee81a23bda8a277cd1a5ca99dd9168f171d5c834de9f508f290224c4d7ada48534a4537f55288e2d11cf9676451494961f0
SSDEEP

6144:k2jMWScvFJVXtINx0f00C0zp2Elcjk7lUcfdoIleb:vdv5XtkKDV2djkpTG

Score

N/A

Malware Config

Signatures

Files

d132f2d6b096956852d38fabeb7bb90585f51a0c802b1d3bb6b8ec5bf62c313b
.dll windows x86

967231b3558c2f93495f5d3994722e14

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventA
DeleteFileA
EnterCriticalSection
ExitProcess
GetACP
GetCommandLineA
GetDateFormatA
GetModuleHandleA
GetModuleHandleW
GetStringTypeW
GetVersionExA
HeapAlloc
HeapCreate
HeapFree
HeapSize
InitializeCriticalSection
InterlockedIncrement
IsBadStringPtrA
OpenProcess
QueryPerformanceCounter
ResetEvent
SearchPathA
SetEvent
TlsAlloc
lstrlenA

advapi32

AccessCheckAndAuditAlarmA
AllocateAndInitializeSid
ChangeServiceConfigA
CryptExportKey
CryptGetUserKey
LookupAccountNameW
QueryServiceStatus
RegNotifyChangeKeyValue
RegQueryValueExW
RegSaveKeyA
SetPrivateObjectSecurity
SetTokenInformation

user32

GetSystemMetrics
IsDlgButtonChecked
LoadCursorA
GetDlgCtrlID
SetClipboardData
SetDlgItemTextA
SetScrollInfo
GetClientRect
GetClassNameA
FindWindowA
EndPaint
EnumChildWindows
EndDeferWindowPos
EmptyClipboard
DrawEdge
DefFrameProcA
SetCapture
CheckMenuRadioItem

ole32

CreateObjrefMoniker
CoLoadLibrary
CoCreateInstance
IsEqualGUID

ddraw

DirectDrawCreateEx
DirectDrawCreateClipper
DSoundHelp
DDInternalLock
DirectDrawEnumerateW

Exports

Exports

GetThumbnailFromExifTiff

Sections

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

967231b3558c2f93495f5d3994722e14

Headers

File Characteristics

Imports

kernel32

advapi32

user32

ole32

ddraw

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 108KB

.data Size: 92KB - Virtual size: 172KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 4KB

.text
Size: 108KB - Virtual size: 108KB

.data
Size: 92KB - Virtual size: 172KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 4KB