9a534a56c0f162aacf31a0d317f814405e1f2791180a906b9da9ed3d5efcc697

General

Target

9a534a56c0f162aacf31a0d317f814405e1f2791180a906b9da9ed3d5efcc697
Size

116KB
MD5

55ac272687d96e19dd96dfdbd0fb9da6
SHA1

6476d08fbc8c92d695a8e2a1445bdfbea857010b
SHA256

9a534a56c0f162aacf31a0d317f814405e1f2791180a906b9da9ed3d5efcc697
SHA512

dbe167ee6f7f6b0f758883701a2cf20856ab6f13627a68f5deecbe2ac6454ac9c626a7f38812c0522b01938c0ff189f157f200adb8254702d3bae653978d2ffb
SSDEEP

1536:u5glymYLBGj7XPh1KLKVeI2ohZCleFBM2emg/zBF2m4F+d:mIHp7XPynI2yZC4Fpem8j2FF+d

Score

N/A

Malware Config

Signatures

Files

9a534a56c0f162aacf31a0d317f814405e1f2791180a906b9da9ed3d5efcc697
.dll windows x86

01167daf19a0d043fd95468b2ad1106a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedCompareExchange
WaitForSingleObject
GetTickCount
InterlockedIncrement
InterlockedDecrement
Sleep
ExitProcess
GetLastError
OpenEventA
CreateEventA
CreateDirectoryA
LocalFree
SetLastError
GetModuleFileNameA
MapViewOfFile
LeaveCriticalSection
CopyFileA
CreateProcessA
lstrlenW
EnterCriticalSection
GetModuleHandleA
UnmapViewOfFile
CloseHandle
GetProcAddress
LoadLibraryA
ReleaseMutex
lstrlenA
GetCommandLineA

ole32

CreateBindCtx
CoCreateGuid
CoInitialize
OleSetContainedObject
CoUninitialize
OleCreate

user32

SendMessageA
DispatchMessageA
DefWindowProcA
GetWindowLongA
SetTimer
GetClassNameA
DestroyWindow
PostMessageA
KillTimer
TranslateMessage
RegisterWindowMessageA
SetWindowLongA
GetParent
CreateWindowExA
PostQuitMessage
FindWindowA
GetSystemMetrics
GetMessageA

oleaut32

SysFreeString
SysAllocString
SysAllocStringLen

shlwapi

UrlUnescapeW
StrStrIW

advapi32

RegDeleteValueA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

Exports

Exports

DesktopEventARM

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01167daf19a0d043fd95468b2ad1106a

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB