a8c4dfb71929a17dae9712b6fc9129b99b45cc665252d18bb21b2bafc3b9c236

Sharing

Copy URL Twitter E-mail

General

Target

a8c4dfb71929a17dae9712b6fc9129b99b45cc665252d18bb21b2bafc3b9c236
Size

110KB
MD5

4a43d6e5aac008af0940b88058f51fdc
SHA1

a2bcf0c6ffe0486fd2cb09404671b9f3156f12d0
SHA256

a8c4dfb71929a17dae9712b6fc9129b99b45cc665252d18bb21b2bafc3b9c236
SHA512

5307f819fffd38c11299e6a62109b9a7c1f13644535595c1538a766c12ae70f6454f9e6cc20c0ea700a232d25bcdaa645ba3d7b4fb5baf2cc470c8e04ef7ab16
SSDEEP

1536:EZVUHAY4t0e0USM53phAl0YMcGS+p2KXw6xU42a/VlkFKkxMCeRAP6fzs:EUvE0Zv8y0bcdKXw6/tNk76fzs

Score

N/A

Malware Config

Signatures

Files

a8c4dfb71929a17dae9712b6fc9129b99b45cc665252d18bb21b2bafc3b9c236
.dll windows x86

d692df5d2dd7a44835dd083403fe12cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersion
lstrcpyW
QueryPerformanceFrequency
InterlockedExchange
lstrcpynW
GetProcAddress
lstrlenA
IsBadWritePtr
GetModuleFileNameA
LoadLibraryExW
OpenFileMappingA
InterlockedIncrement
lstrcpynA
GetComputerNameA
OpenMutexW
OpenSemaphoreA
LoadLibraryA
LoadLibraryExA
VirtualAlloc
VirtualFree
VirtualQuery
DosDateTimeToFileTime
IsBadReadPtr
SetLastError
QueryPerformanceCounter
VirtualProtect
lstrcmpA
GetHandleInformation
GetModuleHandleA

user32

GetGUIThreadInfo
GetWindowContextHelpId
IsCharAlphaNumericA
IsCharAlphaA
IsClipboardFormatAvailable
GetAncestor
GetWindowInfo
GetDesktopWindow
SetLastErrorEx
GetWindowPlacement
IsCharUpperA
WindowFromDC
GetWindow
GetWindowTextLengthA
InSendMessage
GetClientRect
IsChild
GetWindowRect
GetWindowDC
CopyIcon
GetForegroundWindow
GetLastActivePopup
GetTopWindow
IsZoomed
GetParent
IsIconic
GetWindowTextA

advapi32

RevertToSelf
IsValidAcl
IsValidSecurityDescriptor

gdi32

GetBkColor
GetPixel
GetROP2

ole32

CoGetCurrentProcess

shell32

ord64
ord524

shlwapi

PathIsFileSpecA
PathCompactPathExW
PathAddBackslashW
StrCmpNIW
StrChrIA
PathUndecorateW
PathRemoveExtensionA
PathRemoveBlanksW
PathRemoveBackslashA
PathQuoteSpacesW
StrPBrkW
PathIsUNCServerA
PathGetCharTypeA
PathUnquoteSpacesA
PathIsNetworkPathA
PathGetDriveNumberW
StrStrA
StrChrIW
PathIsSameRootW
ChrCmpIW
PathSkipRootA
PathStripPathW
PathIsPrefixA
PathIsFileSpecW
PathIsLFNFileSpecA
StrCSpnA
StrSpnA
PathBuildRootA
StrStrW
StrTrimW
PathRemoveArgsW
StrCmpNIA
PathRemoveBlanksA
StrCpyW
PathCommonPrefixA
PathCreateFromUrlW
StrCSpnW
PathRemoveBackslashW
PathRemoveFileSpecW
StrTrimA
PathIsRootA
PathStripToRootW
PathIsUNCA
ChrCmpIA
PathQuoteSpacesA
PathIsURLA
PathIsURLW
PathMakePrettyW

msvcrt

_strtime
clock
_getmbcp
_getmaxstdio
_wcslwr
_wcsnset
srand
wcslen
_mbsspnp
iscntrl
_wgetenv
_wcsicmp
getenv
strncpy
_CIasin
_mbsicmp
ispunct
isprint
_ultoa
_fpclass
isdigit
strerror
strncmp
_initterm
_adjust_fdiv
malloc
_mbscspn
_hypot
_wstrdate
_mbstrlen
strcoll
strchr
memchr
_mbsstr
_mbslen
_ltoa
free
_swab
localeconv
realloc
isxdigit
mbtowc
ldexp
_strrev
_mbbtype
wcsspn
_wcsncoll
_mbsncoll
strpbrk
islower
time
_CIcosh
_getdrive
_stricoll
_memccpy
_wcsnicoll
wcscoll
wcsxfrm
memmove
_mbsspn
ceil
_strdate
_mbsninc
_CIacos
_mbscmp
wctomb
wcschr
frexp
_mbsbtype
rand
_mbsrchr
_mbsnicmp
_strnicmp
_mbscpy
_getpid

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d692df5d2dd7a44835dd083403fe12cc

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

shell32

shlwapi

msvcrt

Sections

.text Size: 11KB - Virtual size: 10KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 89KB - Virtual size: 94KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 11KB - Virtual size: 10KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 89KB - Virtual size: 94KB

.reloc
Size: 4KB - Virtual size: 3KB