7fd2603a134dc1f1c111f464ac6fe983876e63c131fd808cda07c6f11d8611e5

General

Target

7fd2603a134dc1f1c111f464ac6fe983876e63c131fd808cda07c6f11d8611e5
Size

140KB
MD5

78d81d8659676d29f8a8d44daf6dd8a0
SHA1

b3b2c8d2a923c166eafe35927eb9cb44e3a2f3e5
SHA256

7fd2603a134dc1f1c111f464ac6fe983876e63c131fd808cda07c6f11d8611e5
SHA512

3334624faa3bf4738f6ab65a06e7b015dd1f8f0af7d15f30214df8c3e2965d2f7db4527d728bf1765bcfced31ba3b78b087f0c6c3256cf2a8f02266d802057ef
SSDEEP

1536:HTbRm+IAke4KRRXGUq0YhrgR1Cfdd70/t4XueznejpFkn6DguENt6eecYNbscl:HfRm+IAkfmqZgedm/t4G3TAMwcIcl

Score

N/A

Malware Config

Signatures

Files

7fd2603a134dc1f1c111f464ac6fe983876e63c131fd808cda07c6f11d8611e5
.dll windows x86

cd39fa4c145778e9be13a67cedf0586e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CopyFileA
SetLastError
GetProcAddress
UnmapViewOfFile
EnterCriticalSection
CloseHandle
Sleep
LoadLibraryA
ReleaseMutex
lstrlenW
GetModuleHandleA
CreateProcessA
GetModuleFileNameA
CreateEventA
MapViewOfFile
InterlockedIncrement
GetCommandLineA
LeaveCriticalSection
InterlockedDecrement
InterlockedCompareExchange
OpenEventA
ExitProcess
GetTickCount
GetLastError
LocalFree
lstrlenA
WaitForSingleObject
CreateDirectoryA

ole32

CoInitialize
OleCreate
CreateBindCtx
CoCreateGuid
CoUninitialize
OleSetContainedObject

user32

GetParent
GetMessageA
SendMessageA
KillTimer
DefWindowProcA
CreateWindowExA
SetWindowLongA
DispatchMessageA
GetWindowLongA
GetSystemMetrics
FindWindowA
PostMessageA
DestroyWindow
RegisterWindowMessageA
TranslateMessage
SetTimer
GetClassNameA
PostQuitMessage

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString

shlwapi

UrlUnescapeW
StrStrIW

advapi32

RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

Exports

Exports

DevGLspl

Sections

.text
Size: 120KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cd39fa4c145778e9be13a67cedf0586e

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 120KB - Virtual size: 116KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 120KB - Virtual size: 116KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB