9ef339219c0d3d0e5456338643f76752fe7b3bf69f3af7e949491e5ef9d72d35

Sharing

Copy URL Twitter E-mail

General

Target

9ef339219c0d3d0e5456338643f76752fe7b3bf69f3af7e949491e5ef9d72d35
Size

123KB
MD5

cb6b83d6a42a993fc7a917032aed85eb
SHA1

bc0dee9741df2835f1ab5edd323971257e552a7a
SHA256

9ef339219c0d3d0e5456338643f76752fe7b3bf69f3af7e949491e5ef9d72d35
SHA512

09bd6fc1fef9092b18a9056613a5d9be1ddedca9f609259d6c05e82fc1c121e040f26083560f4ca6ffb74b846d7058e1dc5433b16d4ab37c84fe9b585d714fe4
SSDEEP

3072:8+kV7vvn0aC7GP9wALg0++arUVhB0pY9T:8bA7GP91ghqhWO9T

Score

N/A

Malware Config

Signatures

Files

9ef339219c0d3d0e5456338643f76752fe7b3bf69f3af7e949491e5ef9d72d35
.exe windows x86

43a40f46b2dd21559dbf7c80bbf9ae4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
_unlock
strchr
_wtoi
__p__commode
memmove
wcsrchr
_wcsicmp
realloc
__getmainargs
__set_app_type
_vsnwprintf

kernel32

GetTickCount
LeaveCriticalSection
LoadLibraryA
GetCurrentProcessId
FindNextFileW
FreeEnvironmentStringsW
MoveFileW
SetLastError
MapViewOfFile
EnterCriticalSection
SetFilePointer
GetCurrentThreadId
QueryPerformanceCounter
GetCurrentProcess
GetModuleFileNameA
lstrcpynW
GetThreadLocale
LocalFileTimeToFileTime
GetModuleFileNameW
GetEnvironmentStringsW
ReleaseSemaphore
lstrcpyA
CreateEventW
GetSystemTimeAsFileTime
GetPrivateProfileStringW
FlushInstructionCache
GetComputerNameW
CreateDirectoryW
DeleteCriticalSection
HeapCreate
FreeEnvironmentStringsA
GetStringTypeW
GetDateFormatA
lstrcmpiA
IsValidCodePage
GetStringTypeA
WriteConsoleW
TerminateThread
VirtualAlloc
RaiseException

user32

DestroyMenu
GetPropW
GetNextDlgTabItem
SetTimer
TranslateMessage
LoadCursorW
CharNextW
UnionRect
SetWindowsHookExA
ReleaseDC
SetScrollPos
wsprintfA
IsRectEmpty
MoveWindow
GetMenu
GetDC
GetWindow
SetWindowRgn
EnableMenuItem
GetClassNameA
GetMessageTime
PtInRect
DestroyIcon
SetWindowPlacement
SetDlgItemTextW
LoadStringW
TrackPopupMenu
GetClassInfoExW

advapi32

RegSetValueExW
RegEnumKeyW
RegDeleteValueW
AdjustTokenPrivileges

Sections

.text
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43a40f46b2dd21559dbf7c80bbf9ae4b

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

advapi32

Sections

.text Size: 43KB - Virtual size: 43KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 72KB - Virtual size: 212KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 1024B

.text
Size: 43KB - Virtual size: 43KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 72KB - Virtual size: 212KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 1024B