5e35ea8d65789c2303e680545a1d04c5038b3c9ffb00a05ff45354c5f7de4e87

Sharing

Copy URL Twitter E-mail

General

Target

5e35ea8d65789c2303e680545a1d04c5038b3c9ffb00a05ff45354c5f7de4e87
Size

856KB
MD5

cbe1c885bb49ab07b5b911b1a6b8bfd0
SHA1

3e0a8e5d349784282b0a94ef1b5fa266896f49ef
SHA256

5e35ea8d65789c2303e680545a1d04c5038b3c9ffb00a05ff45354c5f7de4e87
SHA512

46ed8aed3171430199e85cf07c6bb32ba5b5b9ca3bda7a43a367431343482cde643741a1ab1d3953b90d74663e1b39fb171561be48067dc3db975508ced6e6a2
SSDEEP

24576:EP+fjvBzfKwb/jj8LZprqbp3BAIJHGZy0wTf4wAEWYHKP8sAxoJ8n:fsR5qDVTXTP8

Score

N/A

Malware Config

Signatures

Files

5e35ea8d65789c2303e680545a1d04c5038b3c9ffb00a05ff45354c5f7de4e87
.dll windows x86

b92e5ad6530afdaac3cc18836c862647

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

pncrt

_adjust_fdiv
_vsnprintf
strcspn
strtok
printf
_purecall
rand
??3@YAXPAX@Z
_ftol
_stricmp
_getmbcp
strstr
malloc
sprintf
atoi
sscanf
isalnum
isalpha
tolower
??2@YAPAXI@Z
_mbctype
_strcmpi
_strupr
_putenv
isspace
strspn
_ismbcspace
memmove
atol
strncmp
free
strtol
strncpy
isdigit
strchr
strtod
_initterm
_onexit
__dllonexit
wcslen
toupper
_strnicmp
realloc
strrchr

ole32

RevokeDragDrop
RegisterDragDrop

kernel32

CreateDirectoryA
InterlockedDecrement
InterlockedIncrement
GetVersionExA
LoadLibraryA
SetErrorMode
FreeLibrary
GetProcAddress
GetModuleFileNameA
lstrlenA
GetPrivateProfileSectionA
WritePrivateProfileSectionA
GetTickCount
GetCurrentThreadId
OutputDebugStringA
GlobalUnlock
GlobalLock
WideCharToMultiByte
GetModuleHandleA
GetFileAttributesA
Sleep
GetCurrentProcess
SetProcessWorkingSetSize
GetVersion
GetSystemInfo
MultiByteToWideChar
lstrcpyA

user32

CallNextHookEx
RegisterClipboardFormatA
GetForegroundWindow
MoveWindow
InflateRect
ScreenToClient
GetDoubleClickTime
GetSubMenu
GetMenuItemCount
UnhookWindowsHookEx
SetWindowsHookExA
FindWindowA
DeleteMenu
GetMenuItemInfoA
EnumThreadWindows
SetActiveWindow
UpdateWindow
FlashWindow
GetWindow
IsWindowEnabled
GetMenu
InsertMenuItemA
ClipCursor
IsZoomed
SetParent
GetMenuItemID
BringWindowToTop
RegisterWindowMessageA
DestroyIcon
GetSystemMenu
RemoveMenu
EnableMenuItem
FillRect
DrawTextExA
GetSystemMetrics
CreatePopupMenu
DestroyMenu
SetWindowRgn
GetDC
ReleaseDC
GetFocus
SetFocus
GetWindowThreadProcessId
RedrawWindow
SetRect
IntersectRect
OffsetRect
GetLastActivePopup
SetForegroundWindow
AttachThreadInput
PostMessageA
GetWindowPlacement
GetActiveWindow
GetCursorPos
MessageBoxA
IsWindowVisible
SetWindowPlacement
CharNextA
GetKeyState
CharPrevA
SetMenu
CharLowerA
SetMenuItemInfoA
LoadBitmapA
TrackPopupMenuEx
IsMenu
GetParent
MapWindowPoints
SetWindowPos
IsRectEmpty
EnableWindow
ShowWindow
SetWindowTextA
GetWindowLongA
GetSysColor
GetClientRect
SetWindowLongA
SendMessageA
ClientToScreen
GetWindowRect
PtInRect
SystemParametersInfoA
IsWindow
IsIconic

gdi32

PatBlt
CreateCompatibleBitmap
GetDCOrgEx
GetDIBits
GetDeviceCaps
ExtCreateRegion
GetTextMetricsA
CreatePen
RoundRect
Ellipse
GetClipBox
SetPixel
CreateFontIndirectA
SetBkMode
CreateRoundRectRgn
CreateRectRgn
CombineRgn
GetTextExtentPoint32A
SetTextColor
SetBkColor
CreateSolidBrush
DeleteObject
CreateDCA
CreateCompatibleDC
GetStockObject
SelectObject
GetTextFaceA
DeleteDC
GetObjectA
GetPixel

comctl32

ord17

shell32

SHAppBarMessage

advapi32

RegOpenKeyA
RegQueryValueA
RegCloseKey
RegOpenKeyExA

Exports

Exports

RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 564KB - Virtual size: 561KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b92e5ad6530afdaac3cc18836c862647

Headers

File Characteristics

Imports

pncrt

ole32

kernel32

user32

gdi32

comctl32

shell32

advapi32

Exports

Exports

Sections

.text Size: 564KB - Virtual size: 561KB

.rdata Size: 84KB - Virtual size: 81KB

.data Size: 24KB - Virtual size: 21KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 60KB - Virtual size: 58KB

.rmnet Size: 116KB - Virtual size: 116KB

.text
Size: 564KB - Virtual size: 561KB

.rdata
Size: 84KB - Virtual size: 81KB

.data
Size: 24KB - Virtual size: 21KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 60KB - Virtual size: 58KB

.rmnet
Size: 116KB - Virtual size: 116KB