c410135c5d177ff63024a89d2e9774ca57e664e1da61910db4ca45bb77310128

Sharing

Copy URL Twitter E-mail

General

Target

c410135c5d177ff63024a89d2e9774ca57e664e1da61910db4ca45bb77310128
Size

18KB
MD5

c0b73c5b3602a78cc5d79c55a0a69592
SHA1

598b98f0a249d1b9d257dc6309ca0fd9babf8dcc
SHA256

c410135c5d177ff63024a89d2e9774ca57e664e1da61910db4ca45bb77310128
SHA512

4d07c947620be701dac3592df130e6708e02a92070e0103e6e796b61e6e2939cbfce24435a12ae69c389102c03df307963ca8e93c3197fb3d9a7edc22bab5460
SSDEEP

384:hiRo/Vs7meVcLf/6HOnomQyrGHLr32r7z00C9DnpVE8V5vSQKX:hiRo/VsqeVcr/+mjKHLoPCrVEC6bX

Score

N/A

Malware Config

Signatures

Files

c410135c5d177ff63024a89d2e9774ca57e664e1da61910db4ca45bb77310128
.dll windows x86

931cc2bc9e49d8621841a577fa2ef3bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeProcess
GetProcessWorkingSetSize
LocalFileTimeToFileTime
GetLastError
WritePrivateProfileSectionW
GetPriorityClass
GetPrivateProfileSectionW
LocalShrink
HeapSize
GetProcessShutdownParameters
GetNumberOfConsoleFonts
GetPrivateProfileSectionNamesA
QueryPerformanceFrequency
GetProfileIntA
EraseTape
ChangeTimerQueueTimer
GetProcessIoCounters
EscapeCommFunction
OpenSemaphoreA
EnumCalendarInfoA
GetProcAddress
EndUpdateResourceW
SystemTimeToTzSpecificLocalTime
FindAtomA
CreatePipe
FindNextVolumeMountPointA
WriteConsoleOutputCharacterW
CallNamedPipeA
VDMConsoleOperation

msvcrt

??1bad_cast@@UAE@XZ
fscanf
setvbuf
_c_exit
_wcsupr
_seh_longjmp_unwind
calloc
_daylight
_lock
_mbbtype
atof
div
asin
_filbuf
_dup
_wmkdir
fread
_ismbclower
fgetc
_mbsbtype
_fputwchar

gdi32

GdiFullscreenControl
SetBkColor
GdiAlphaBlend
OffsetWindowOrgEx
GetTransform
GdiConvertMetaFilePict
GetTextAlign
SetColorAdjustment
XLATEOBJ_cGetPalette
EndPath
GetTextExtentExPointWPri
GetFontResourceInfoW
EngFillPath
LPtoDP
CreateEnhMetaFileW
GetFontAssocStatus
TranslateCharsetInfo
GdiTransparentBlt
EngLineTo
ScaleViewportExtEx
StartPage
ModifyWorldTransform

user32

IsCharUpperA
LoadMenuIndirectA
IsRectEmpty
EnableScrollBar
CreateMDIWindowW
CloseClipboard
GetLastInputInfo
CharLowerBuffA
ShowScrollBar
DefMDIChildProcW
DestroyCaret
ClientToScreen
TranslateMessageEx
GetAsyncKeyState
ChangeClipboardChain
LoadCursorFromFileA
InitializeLpkHooks
GetTaskmanWindow
InflateRect
SubtractRect
GetClassNameA
SetSysColors
RegisterTasklist
ModifyMenuA
UserHandleGrantAccess
GetNextDlgTabItem

shlwapi

PathAppendW
PathIsDirectoryA
PathRemoveArgsW
SHRegGetUSValueA
UrlGetPartA
SHRegSetUSValueA
SHRegSetPathA
StrToIntW
ChrCmpIW
UrlCompareA
PathCreateFromUrlA
SHRegisterValidateTemplate
PathCombineA
PathFindOnPathW
IntlStrEqWorkerW
UrlGetLocationW
PathRelativePathToA
SHRegQueryInfoUSKeyA
UrlIsNoHistoryA
SHRegGetUSValueW
StrChrIW
PathSearchAndQualifyA
SHDeleteKeyA
SHRegQueryUSValueW
StrSpnA

Exports

Exports

CyNkasAm
HjzxdhvSge
JbfDbisFe
NyOgivqilTxx
QjxahDivnHnk
XpmagdKimordaBfo
QbkjidPmokzYoboPhr
QlhbyBdniMscdym
AmqBcyamRqphyYhagvr
XdoAjnqlrDtr
OoLcvpMbvzkc
XmjDfbt
AcxbPybeSpo
SqzMejeVjsshdjTf
DdkjMxu
LxpTdvbnlwJsggucIjshtvp
OshBznzlJzhhxe
BxZudbjnBna

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

931cc2bc9e49d8621841a577fa2ef3bf

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

shlwapi

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 512B - Virtual size: 16B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 512B - Virtual size: 16B