d4c39dd6e5fcf3e69e50c647e710ad24654a57be13034b774f04e49718068b04

Sharing

Copy URL Twitter E-mail

General

Target

d4c39dd6e5fcf3e69e50c647e710ad24654a57be13034b774f04e49718068b04
Size

28KB
MD5

28d213cb3a8794f04007c4134ce21664
SHA1

0062f55fa928d38e34c0c142c359a915a17ef9d2
SHA256

d4c39dd6e5fcf3e69e50c647e710ad24654a57be13034b774f04e49718068b04
SHA512

edc6032d0113e1044ff5e875782b1414ff418d372cb1113377567b6b1569e40636895a5c68ecaf5e0c77a5c75d477853b0d4ed48d1d5f63abd419f0f039b132b
SSDEEP

384:JPDtMoPPbpXYSmcheUBYIhWvYPMfaqDr7quNFJgbUoEIycgjcTEeRtS:FDRPPTeaOr7qQvgPlgwV4

Score

N/A

Malware Config

Signatures

Files

d4c39dd6e5fcf3e69e50c647e710ad24654a57be13034b774f04e49718068b04
.dll windows x86

78a30f02a921068f13200880b4d03849

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnterCriticalSection
InitializeCriticalSection
VirtualFree
MultiByteToWideChar
Sleep
DeleteFileA
GetSystemDirectoryA
GetWindowsDirectoryA
TerminateProcess
GetCurrentProcess
LeaveCriticalSection
WaitForSingleObject
CreateThread
IsBadReadPtr
FreeLibraryAndExitThread
GetModuleFileNameA
VirtualProtect
GetModuleHandleA
CreateFileA
GetFileSize
VirtualAlloc
SetFilePointer
ReadFile
CloseHandle
GetLastError

user32

GetSystemMetrics
IsWindowVisible
EnumWindows
GetWindowTextA
wsprintfA
GetDesktopWindow
ShowWindow
SetWindowPos
GetWindowDC
GetWindowRect

gdi32

CreateCompatibleBitmap
BitBlt
SelectObject
CreateCompatibleDC
GetDeviceCaps
DeleteObject

wininet

InternetCloseHandle
InternetOpenUrlA
InternetOpenA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetReadFile
InternetSetOptionA
InternetQueryOptionA

msvcrt

_except_handler3
_adjust_fdiv
_initterm
__CxxFrameHandler
??3@YAXPAX@Z
_vsnprintf
wcslen
wcstombs
_strcmpi
??2@YAPAXI@Z
strstr
_strlwr
strchr
atoi
malloc
wcscmp
free

gdiplus

GdipGetImageEncodersSize
GdipGetImageEncoders
GdipDeleteGraphics
GdipSaveImageToFile
GdipDrawImageI
GdipScaleWorldTransform
GdipGetImageGraphicsContext
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdiplusStartup
GdipDisposeImage

Exports

Exports

KsCreateAllocator
KsCreateClock
KsCreatePin
KsCreateTopologyNode

Sections

.text
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78a30f02a921068f13200880b4d03849

Headers

File Characteristics

Imports

kernel32

user32

gdi32

wininet

msvcrt

gdiplus

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 12KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB