92b60b2e6152c5c000671db8cf19fa0845b8f97bb4251b03a4aa6cf8df3a03e3

Sharing

Copy URL Twitter E-mail

General

Target

92b60b2e6152c5c000671db8cf19fa0845b8f97bb4251b03a4aa6cf8df3a03e3
Size

76KB
MD5

c55085f061fac220846f383026b54f85
SHA1

4192cffd875b17132da79643e132e122e1a526f5
SHA256

92b60b2e6152c5c000671db8cf19fa0845b8f97bb4251b03a4aa6cf8df3a03e3
SHA512

9ca487582768eec8b93d4655b5098d5485237f1f86bf1f97b2a5ed3be9f2b1f5a22772fdac956d88c51e8c26beba7546766543ffd82743f54f5bba820b623422
SSDEEP

1536:Gh1iL8QTv9vuTcnF6QP66ld6O9yk4t+hNUpq:GhmTlvuYF6sldp6+hIq

Score

N/A

Malware Config

Signatures

Files

92b60b2e6152c5c000671db8cf19fa0845b8f97bb4251b03a4aa6cf8df3a03e3
.dll windows x86

7f379dae17d963727e23424b2d48beb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
FillConsoleOutputAttribute
MoveFileExW
DeleteFileA
ReadConsoleW
MultiByteToWideChar
WriteProfileStringW
GetSystemTime
GetDateFormatA
SetFileTime
ReleaseSemaphore
OpenFileMappingW
GetModuleFileNameW
TerminateProcess
GetFileAttributesA
DisconnectNamedPipe
GetCurrentThreadId
GetVolumePathNamesForVolumeNameW
FreeConsole
GetTempFileNameW
IsBadReadPtr
GetTickCount
UnlockFile
SetEvent
GetFileSizeEx
ChangeTimerQueueTimer
GetVersionExW
lstrcmpA
LocalUnlock
GlobalMemoryStatusEx
GetSystemDirectoryW
MoveFileA
SetTimeZoneInformation
OpenProcess
GlobalFindAtomW
ResumeThread
FormatMessageA
ConvertDefaultLocale
GetNumberFormatW
GetCurrentProcessId
OpenSemaphoreA
VerLanguageNameW
GetStartupInfoA
DeleteTimerQueueEx
GetDiskFreeSpaceA
GetProcessVersion
EnumResourceNamesW
GetVolumePathNameW
VirtualUnlock
RemoveDirectoryA
FreeLibraryAndExitThread
LocalFileTimeToFileTime
IsProcessorFeaturePresent
GetProfileStringA
IsBadWritePtr
GetDiskFreeSpaceW
VirtualAlloc
VirtualAllocEx
TerminateJobObject
GetLargestConsoleWindowSize
GetLogicalDriveStringsA
GetCurrentThread
FindAtomA
GlobalReAlloc
AddAtomW
QueueUserWorkItem
Sleep
HeapSetInformation
SetInformationJobObject
ReadConsoleInputA
CreateNamedPipeA
VirtualQueryEx
GlobalAddAtomW
CreateToolhelp32Snapshot
CancelWaitableTimer
HeapSize
GetBinaryTypeW
GetLongPathNameW
CreateFileA
CancelIo
IsBadHugeReadPtr
CreateNamedPipeW
GetLogicalDrives
PurgeComm
GetEnvironmentStringsW
FlushConsoleInputBuffer
CreateSemaphoreA
FindResourceA
FileTimeToSystemTime
GetUserDefaultLangID
PeekConsoleInputW
UpdateResourceA
CopyFileW
CreateEventW
GetStringTypeA
DosDateTimeToFileTime
SetProcessWorkingSetSize
CallNamedPipeA
CreateWaitableTimerA
GlobalGetAtomNameA
GetFileTime
GetSystemDefaultUILanguage
WriteConsoleInputA
lstrcpynA
GetLogicalDriveStringsW
EnumResourceLanguagesA
SetConsoleMode
SetCurrentDirectoryW
GetCurrentDirectoryA
GetDriveTypeW
GetModuleHandleW
AreFileApisANSI
UnregisterWaitEx
GetConsoleCP
PeekNamedPipe
FindVolumeMountPointClose
GetTempPathW
LockFileEx
GetCompressedFileSizeW
SetConsoleTextAttribute
AssignProcessToJobObject
GetProcessHeap
lstrcatW
CreateDirectoryA
lstrcpyW
GetModuleHandleA
UnmapViewOfFile
MoveFileExA
ReleaseMutex
HeapFree
LoadLibraryA
WaitForSingleObject
GetSystemTimeAsFileTime
MapViewOfFile
GetLastError
VirtualProtect
lstrlenA
CopyFileA
CreateProcessA
CreateMutexA
GetProcAddress
HeapAlloc
VirtualQuery
CreateFileMappingA
GlobalFindAtomA
LeaveCriticalSection

ole32

OleIsRunning
GetHGlobalFromStream
CreateILockBytesOnHGlobal
GetHGlobalFromILockBytes
BindMoniker
CreateItemMoniker
CoGetCallContext
StringFromGUID2
StgCreateDocfile
CreateBindCtx
RegisterDragDrop
CoCreateFreeThreadedMarshaler
CreateFileMoniker
OleRegEnumVerbs
IIDFromString
RevokeDragDrop
PropVariantCopy
OleSaveToStream
CoGetInterfaceAndReleaseStream
StgOpenStorage
CoLockObjectExternal
CoGetMarshalSizeMax
CoFreeUnusedLibraries
OleTranslateAccelerator
CoEnableCallCancellation
GetRunningObjectTable
CoImpersonateClient
CoGetMalloc
StringFromIID
OleRegGetMiscStatus
CoMarshalInterface
OleQueryCreateFromData
CoDisconnectObject
CoTaskMemAlloc
CoTaskMemFree

gdi32

ExtCreatePen
DeleteDC
GetTextCharacterExtra
SetRectRgn
RemoveFontResourceA
GetSystemPaletteUse
GetCurrentObject
BeginPath
OffsetWindowOrgEx
GetDCOrgEx
PathToRegion
SetPolyFillMode
GetGlyphOutlineW
StrokeAndFillPath
ExtTextOutW
SetMiterLimit
TranslateCharsetInfo
GetPixel
PolyPolyline
OffsetViewportOrgEx
SetICMMode
ResetDCA
CreateEnhMetaFileW
EnumFontsA
Polyline
CreatePolygonRgn
CreateDiscardableBitmap
CreateEnhMetaFileA
RoundRect
GetMapMode
GetTextExtentPoint32A
BitBlt
CopyEnhMetaFileA
GetSystemPaletteEntries
LineTo
ScaleWindowExtEx
IntersectClipRect
CreateFontIndirectA
GetFontData
GetObjectW
AbortPath
GetCharWidthW
EqualRgn
GetMetaFileA
CreatePenIndirect
GetCharABCWidthsW
SetViewportExtEx
GetTextExtentPointW
GetEnhMetaFileBits
GetTextExtentExPointA
GetTextExtentPointA
SetDIBits
PtInRegion
AbortDoc
EnumMetaFile
CreateMetaFileW
SetBitmapDimensionEx
Arc
GetCharWidth32W
CreateHalftonePalette
CreateBrushIndirect
CreateICA
ExtEscape
DeleteEnhMetaFile
GetStretchBltMode
SelectObject
LPtoDP
UnrealizeObject
PolylineTo
SetROP2

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7f379dae17d963727e23424b2d48beb5

Headers

File Characteristics

Imports

kernel32

ole32

gdi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 2KB