962a123bbd88b5410163c1314aab523e346af51841f6654d3abcf81b989e0b9b

Sharing

Copy URL Twitter E-mail

General

Target

962a123bbd88b5410163c1314aab523e346af51841f6654d3abcf81b989e0b9b
Size

124KB
MD5

2e0072d9430402712c7c061cc8f230fa
SHA1

5a708f56512bc205e3976ebbe5bc179f649b7295
SHA256

962a123bbd88b5410163c1314aab523e346af51841f6654d3abcf81b989e0b9b
SHA512

f59208a8f6f07386cccde51bcac51a1182aba653e2dcfc3031c971e396dd3b885a9803fe8627aa24d19f664414adfa2e42d326c2bce0b6393212782b95f21bb0
SSDEEP

3072:W1D81vZ/aK/Sa9Z5E6G0TpIBVwdbRoEC:kQTCK/VZSsuGdbW

Score

N/A

Malware Config

Signatures

Files

962a123bbd88b5410163c1314aab523e346af51841f6654d3abcf81b989e0b9b
.dll windows x86

b58c180a97fc14bd6f02164f78b63ce1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapDestroy
lstrcpyA
CloseHandle
GetComputerNameA
GetDiskFreeSpaceA
GlobalMemoryStatus
QueryPerformanceCounter
GetLocalTime
LocalFree
GetCurrentThreadId
GetCurrentProcessId
GetSystemInfo
LocalAlloc
GetTickCount
LoadLibraryA
GetExitCodeThread
CreateThread
TerminateThread
Sleep
lstrcpyW
GetDateFormatW
LoadLibraryW
GetProcAddress
GetLastError
lstrcmpiA
GlobalUnlock
FreeLibrary
CreateEventW
SetEvent
GetVersionExW
GetConsoleMode
GetStdHandle
SetLastError
ReadFile
SetFilePointer
GetFileSizeEx
CreateFileW
GetTimeFormatW
SetConsoleMode
ExitProcess
GetConsoleOutputCP
HeapFree
HeapAlloc
GetProcessHeap
GetThreadLocale
CompareStringW
FormatMessageW
WriteConsoleW
ReadConsoleW
DeleteCriticalSection
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
CreateMutexA
UnmapViewOfFile
WaitForSingleObject
ReleaseMutex
VirtualProtect
GlobalFree
GetCommandLineA
GlobalLock
GlobalAlloc

user32

CharNextA
PostMessageW
CheckRadioButton
SetWindowTextW
IsDlgButtonChecked
MoveWindow
SetDlgItemTextW
GetWindowRect
GetDesktopWindow
GetParent
EnableWindow
EndDialog
DialogBoxParamW
SetCursor
LoadCursorW
GetDlgItemTextW
LoadStringW
LoadAcceleratorsW
CharNextW
ReleaseDC
SendDlgItemMessageW
wsprintfW
SetFocus
GetDlgItem
GetWindowLongW
SendMessageW
SetWindowLongW
GetDC

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegEnumKeyExA
GetUserNameA
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
GetUserNameW
GetSidSubAuthority
GetSidSubAuthorityCount

gdi32

GetObjectW
CreateFontIndirectW
DeleteObject
GetDeviceCaps

ole32

CoInitializeSecurity
CoCreateInstance
CoUninitialize
CoInitializeEx
CoTaskMemFree
CoTaskMemAlloc

rpcrt4

UuidToStringA
RpcStringFreeA

msvcr71

towupper
_beginthread
fflush
fputs
sprintf
wcscmp
swprintf
_wtol
wcstol
_wtoi
atoi
isalnum
wcscat
_onexit
wcstod
fprintf
_ultow
wcstok
memset
_iob
_vsnwprintf
_errno
__iob_func
_initterm
_adjust_fdiv
__CppXcptFilter
__dllonexit
wcslen
bsearch
_CxxThrowException
memmove
_strdup
realloc
malloc
free
wcsncat
wcscpy
_except_handler3

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b58c180a97fc14bd6f02164f78b63ce1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

msvcr71

Sections

.text Size: 72KB - Virtual size: 69KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 36KB - Virtual size: 69KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 72KB - Virtual size: 69KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 36KB - Virtual size: 69KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 4KB - Virtual size: 3KB