82949cac561f28ded60e41d53c6bbec65d2a25d4567e905782b3ad952396bfc7

General

Target

82949cac561f28ded60e41d53c6bbec65d2a25d4567e905782b3ad952396bfc7
Size

12KB
MD5

604f00ac2901465bcad7363700690f90
SHA1

dfdf44365dd2916234acc5c802a96ae457625149
SHA256

82949cac561f28ded60e41d53c6bbec65d2a25d4567e905782b3ad952396bfc7
SHA512

19f48cd588f452636be15436efb70442825c2a7660d28656075207dc9845ec5ebaa5edc6af508678ef7b4fbde6530e4a52c80c86849dacd61a074a66b23cb9dc
SSDEEP

192:2Hcd2t2srTFtfLLaH06Qg4wR+pH9NRHOJQocQzBqo/M7JS0Y:mWCHrHo/DUnH40oU7d

Score

N/A

Malware Config

Signatures

Files

82949cac561f28ded60e41d53c6bbec65d2a25d4567e905782b3ad952396bfc7
.dll windows x86

d920865f0cdd9eb2cd5b25335cb73dd0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
ReadFile
VirtualFree
lstrcpyA
GetTempPathW
VirtualProtect
GetLocalTime
TerminateProcess
GetFileSize
WideCharToMultiByte
MultiByteToWideChar
GetCurrentDirectoryA
GetPrivateProfileStringA
GetModuleHandleA
GetProcAddress
GetTempPathA
Sleep
CreateFileA
CreateThread
CloseHandle
lstrcatA
GetSystemDirectoryA
lstrlenA

user32

wsprintfA
wsprintfW
CharLowerW
CharUpperW
IsRectEmpty

gdi32

BitBlt
CreateCompatibleBitmap
GetDeviceCaps
CreateCompatibleDC
CreateDCA
DeleteDC
SelectObject

gdiplus

GdiplusShutdown
GdiplusStartup
GdipSaveImageToFile
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipGetImageEncodersSize

ws2_32

inet_addr
htons
socket
closesocket
recv
send
WSAStartup
connect

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

msvcrt

memset
atoi
malloc
free
_itoa
memcpy
strstr

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d920865f0cdd9eb2cd5b25335cb73dd0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

gdiplus

ws2_32

wininet

msvcrt

Sections

.text Size: 7KB - Virtual size: 6KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 1KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 6KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 1KB

.reloc
Size: 1KB - Virtual size: 1KB