c437159eda882c4928efd3a034f826467c428a4733f94a7c1d24cb8114aa81b0

General

Target

c437159eda882c4928efd3a034f826467c428a4733f94a7c1d24cb8114aa81b0
Size

18KB
MD5

acee518111f68c236d765c5b82b66ab7
SHA1

8ce124fc26764334b0843db8548de839afe24a34
SHA256

c437159eda882c4928efd3a034f826467c428a4733f94a7c1d24cb8114aa81b0
SHA512

a0561365df761b2fa90a459dc352d5445c87b3051583e0086c119275c4072edebb73ebd3c1c6e586401636e75eff726254702eabf2ed7951211983fc20b8cbe5
SSDEEP

384:PbjLGMNmVLoZYvR8efv8321qmqm22MLedI0iJh:qMyBZNfv8KqmGedI0iJ

Score

N/A

Malware Config

Signatures

Files

c437159eda882c4928efd3a034f826467c428a4733f94a7c1d24cb8114aa81b0
.dll windows x86

5f727d1a6d97586c7c7c9772c951a850

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
WideCharToMultiByte
GetPrivateProfileStringA
GetProcAddress
GetCurrentThread
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
IsBadReadPtr
ReadProcessMemory
WriteProcessMemory
RaiseException
GetModuleHandleA
TerminateThread
GetLocalTime
SetLocalTime
GetComputerNameA
Sleep
GetCurrentProcess
VirtualProtectEx
GetModuleFileNameA
OpenMutexA
CreateMutexA
CreateThread
GetCurrentProcessId

user32

GetWindowThreadProcessId
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
GetWindowTextA
FindWindowA

advapi32

LookupPrivilegeValueA
OpenProcessToken
AdjustTokenPrivileges

wininet

InternetReadFile
InternetCloseHandle
InternetOpenUrlA
InternetOpenA

msvcrt

fclose
_stricmp
_adjust_fdiv
malloc
_initterm
free
strstr
strcat
sscanf
memcpy
strrchr
sprintf
??2@YAPAXI@Z
strlen
memset
strcpy
strncpy
strchr
_strlwr
fread
fopen
??3@YAXPAX@Z

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

sdt
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5f727d1a6d97586c7c7c9772c951a850

Headers

File Characteristics

Imports

kernel32

user32

advapi32

wininet

msvcrt

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 1024B - Virtual size: 3KB

sdt Size: 512B - Virtual size: 8B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 1024B - Virtual size: 3KB

sdt
Size: 512B - Virtual size: 8B

.reloc
Size: 2KB - Virtual size: 1KB