a5fb732ea13645291b9391e7e2f03c38a96fb4c1ae0fb8b1a2e62da308effafe

General

Target

a5fb732ea13645291b9391e7e2f03c38a96fb4c1ae0fb8b1a2e62da308effafe
Size

60KB
MD5

39c20e9de4eeae1ac57a3b0267023d82
SHA1

09b6c085d4373a782d212fb9e07f160e60910fee
SHA256

a5fb732ea13645291b9391e7e2f03c38a96fb4c1ae0fb8b1a2e62da308effafe
SHA512

8b9f41591bbddca3fbf04f7172eadcd583a7803dc02a3c7a0939345e444d8a32cf1b0f2d1737f82c2e9d1a9a0a45a0386dde55c31ac0129100a92027a500b6bc
SSDEEP

768:GCu5Xx6bnwBPWfuHaJO+TMfnr4CWTwk2iAHBZGFLHqouBj4QufYLgbPiRS2:etx6rwSsoQk8VivbunLgb2V

Score

N/A

Malware Config

Signatures

Files

a5fb732ea13645291b9391e7e2f03c38a96fb4c1ae0fb8b1a2e62da308effafe
.dll windows x86

143e93a3e97c74d06105ce31ed6e7714

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapFree
GetProcessHeap
HeapAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedExchange
Sleep
InterlockedCompareExchange
CloseHandle
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetNumberFormatA
CreateDirectoryW
GetTempPathW
WaitForSingleObject
QueryPerformanceCounter
CreateProcessW

user32

GetMessageW
UnregisterClassW
RegisterWindowMessageW
CreateWindowExW
PostMessageW
DefWindowProcW
SendMessageW
GetWindowLongW
EndDialog
SetWindowLongW
DestroyWindow
LoadIconW
SendDlgItemMessageW
DispatchMessageW
SetForegroundWindow
SetDlgItemTextW
SetWindowTextW
DestroyMenu
InsertMenuItemA
GetMenuItemCount
GetMenu
FindWindowA
GetDlgItem
DialogBoxParamW
LoadStringW
EnableWindow
DestroyIcon
mouse_event
RegisterClassW
PostQuitMessage

advapi32

GetTokenInformation

msvcrt

free
memset
memcpy
malloc

shell32

Shell_NotifyIconW
ShellExecuteW

gdi32

GetObjectW
CreateFontIndirectW

Exports

Exports

RoAdjustWWindoww
RoBBeginTokkenLengthh
RoBeeginPProcTextt
RoChanngeProoc
RoGeetWiiindowText
RoGetHHandlleTeext

Sections

.text
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

143e93a3e97c74d06105ce31ed6e7714

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

shell32

gdi32

Exports

Exports

Sections

.text Size: 40KB - Virtual size: 40KB

.data Size: 16KB - Virtual size: 16KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 40KB - Virtual size: 40KB

.data
Size: 16KB - Virtual size: 16KB

.reloc
Size: 2KB - Virtual size: 1KB