dba8a1ccbc73bc727de5b890c5630801baa583af8daf7e42e95ed2d12b9fef8c

Sharing

Copy URL Twitter E-mail

General

Target

dba8a1ccbc73bc727de5b890c5630801baa583af8daf7e42e95ed2d12b9fef8c
Size

47KB
MD5

4f16f73d4eb1f7e51a5457de4d2237b6
SHA1

eb837f862e0b5254656732f2aaa6930e54894fac
SHA256

dba8a1ccbc73bc727de5b890c5630801baa583af8daf7e42e95ed2d12b9fef8c
SHA512

160699d926e74a41f6b4cae7f87b7b8a3ff9a8bd3a5abe98ae4389cd5473d6f5ca36d297c36cd571c8d72c80db51897247ec558581c2820ff14559c53d439f56
SSDEEP

768:ozk2VNmGMFnjSKhJaKv0XTN4fjBw8FHTIwUPoayuggjmvYS:1KNWjRjsXTNC9pIFoVFnvB

Score

N/A

Malware Config

Signatures

Files

dba8a1ccbc73bc727de5b890c5630801baa583af8daf7e42e95ed2d12b9fef8c
.dll windows x86

6f1f2d98debb89169fbf227ba57d13f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateMutexA
Sleep
ExitThread
SetEvent
Process32Next
TerminateProcess
OpenProcess
Process32First
CreateToolhelp32Snapshot
FreeLibraryAndExitThread
GetModuleHandleA
TerminateThread
CreateThread
GlobalFree
GlobalAlloc
SleepEx
ResetEvent
HeapAlloc
GetProcessHeap
HeapFree
LocalAlloc
LocalFree
lstrcatA
LockResource
LoadResource
WaitForSingleObject
GetVersion
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
GetTempPathA
lstrlenA
GetTickCount
CreateEventA
lstrcpyA
GetSystemTime
CloseHandle
FindResourceA
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
ExitProcess
GetLastError
GetProcAddress
LoadLibraryA
RtlUnwind
GetCommandLineA
GetCurrentThreadId
TlsSetValue
TlsAlloc
TlsFree
SetLastError
TlsGetValue
GetStringTypeW

user32

PostMessageA
PostQuitMessage
wsprintfA
GetDesktopWindow
GetWindowRect
SetWindowPos
GetDC
ShowWindow
DefWindowProcA
BeginPaint
GetSystemMetrics
EndPaint
GetWindowDC
CreateWindowExA
UpdateWindow
GetMessageA
DispatchMessageA
TranslateMessage
LoadCursorA
RegisterClassExA
EnumWindows
GetWindowTextA
GetWindowPlacement
SetWindowPlacement

gdi32

CreateCompatibleBitmap
SelectObject
BitBlt
CreateCompatibleDC

advapi32

RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

ShellExecuteA

winmm

waveOutSetVolume
waveOutGetVolume

rasapi32

RasDialA
RasEnumDevicesA
RasHangUpA
RasSetEntryPropertiesA
RasEnumConnectionsA
RasGetConnectStatusA
RasDeleteEntryA

Exports

Exports

StartDialer

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f1f2d98debb89169fbf227ba57d13f2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

winmm

rasapi32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 36KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 36KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 5KB - Virtual size: 4KB