e645591fb6450c45e3c70857ed2d366baa7b28ef4397fde14d38c82f00b29f92

General

Target

e645591fb6450c45e3c70857ed2d366baa7b28ef4397fde14d38c82f00b29f92
Size

112KB
MD5

129a248275b1da5964eb34cdb0264f09
SHA1

f8a62f6acf8294d45a26742d8952431d2169ff29
SHA256

e645591fb6450c45e3c70857ed2d366baa7b28ef4397fde14d38c82f00b29f92
SHA512

0fa477c5d47e33d9f3b7ad91589cd1e30709c634893a8bbcfe4cf299837bfaa594d839caa2a4f8cdc2a670db6acad71b659b7cbc10699bf5823e498b9d530b22
SSDEEP

1536:NERr4Wd0gN4oKhHDpI5564J5LJ5luX30mxK9/vbOfbw/yK+gK93rihBx:NERrGlhHiua5Fzi3l2/qfb2+gK93r

Score

N/A

Malware Config

Signatures

Files

e645591fb6450c45e3c70857ed2d366baa7b28ef4397fde14d38c82f00b29f92
.dll windows x86

6cfa83917927aca7b72c5f72f718e74f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
GetTickCount
SetLastError
CloseHandle
EnterCriticalSection
lstrlenW
GetProcAddress
OpenEventA
GetModuleFileNameA
ExitProcess
GetCommandLineA
Sleep
lstrlenA
InterlockedCompareExchange
CreateProcessA
LeaveCriticalSection
LocalFree
ReleaseMutex
GetLastError
CreateDirectoryA
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
GetModuleHandleA
CreateEventA
WaitForSingleObject
MapViewOfFile
CopyFileA

ole32

OleSetContainedObject
CoCreateGuid
CoInitialize
CreateBindCtx
OleCreate
CoUninitialize

user32

GetMessageA
FindWindowA
SetWindowLongA
DispatchMessageA
DefWindowProcA
PostQuitMessage
GetClassNameA
GetWindowLongA
RegisterWindowMessageA
PostMessageA
GetSystemMetrics
CreateWindowExA
DestroyWindow
KillTimer
SendMessageA
GetParent
TranslateMessage
SetTimer

oleaut32

SysAllocStringLen
SysFreeString
SysAllocString

shlwapi

UrlUnescapeW
StrStrIW

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA

Exports

Exports

DRMAuthenticationInterval

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6cfa83917927aca7b72c5f72f718e74f

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 2KB