c708938f0cc680d5e96f2a2c4aced202e2de86afa1d3f578b36ec9e8ef4ed3f4

Sharing

Copy URL Twitter E-mail

General

Target

c708938f0cc680d5e96f2a2c4aced202e2de86afa1d3f578b36ec9e8ef4ed3f4
Size

268KB
MD5

ff7d1cce4811c12a3046f468f7737cc8
SHA1

b590c307fbd6a72b5b5f10eea4c7596ce4eb46be
SHA256

c708938f0cc680d5e96f2a2c4aced202e2de86afa1d3f578b36ec9e8ef4ed3f4
SHA512

c2dd3230b300b26b5b960ff7a384b8341e3ea5ae294b472034ea7b2082d012fe381f7eef92659b193d6b695362a6ca1d8491fd44173562484aeec9831c18d351
SSDEEP

6144:MeWh39RvwfuZ9ZGSWvIuqTpbBMp2hZzAEi:NWvR4GZ9ZG1Sm4hxAd

Score

N/A

Malware Config

Signatures

Files

c708938f0cc680d5e96f2a2c4aced202e2de86afa1d3f578b36ec9e8ef4ed3f4
.dll windows x86

cbaae5a9ce5c7e02c9fd2dfa801c1b77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeW
MultiByteToWideChar
GetStringTypeA
LCMapStringA
GetLocaleInfoA
LCMapStringW
VirtualProtect
GetSystemInfo
CreateFileA
GetFileSize
ReadFile
CloseHandle
HeapFree
HeapAlloc
ExitProcess
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
IsBadWritePtr
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
UnhandledExceptionFilter
WriteFile
InitializeCriticalSection
InterlockedExchange
VirtualQuery
LoadLibraryA
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetACP
GetOEMCP
GetCPInfo

user32

SetTimer
FillRect
EnumDisplaySettingsA
EnumDisplayDevicesA
KillTimer
CreatePopupMenu
AppendMenuA
GetCursorPos
TrackPopupMenu
CheckMenuItem
DrawTextA
DestroyMenu
wsprintfA
LoadBitmapA

gdi32

CreateDCA
StretchBlt
BitBlt
CreateDIBSection
CreateCompatibleDC
DeleteDC
SelectObject
DeleteObject
GetStockObject

Exports

Exports

_DllGetClassObject@12

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cbaae5a9ce5c7e02c9fd2dfa801c1b77

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 48KB - Virtual size: 44KB

.reloc Size: 4KB - Virtual size: 3KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 48KB - Virtual size: 44KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 168KB - Virtual size: 168KB