bd111712795f8c60bd12c17a519f11d19dd84233304bf1b82145b940cdb43172

Sharing

Copy URL Twitter E-mail

General

Target

bd111712795f8c60bd12c17a519f11d19dd84233304bf1b82145b940cdb43172
Size

337KB
MD5

a9c57a3f14f2d767127befddd0902160
SHA1

95093aa56fe34819aacd4007088f7bf9c852b1d4
SHA256

bd111712795f8c60bd12c17a519f11d19dd84233304bf1b82145b940cdb43172
SHA512

596c0361f1779d3dde7690ab0df9111202a5dcdb763caf37c12e1a4f6483d6647a9d289169503923ec18ea10c85c7b3c7445e04bf0862e2dd47fa644394346f3
SSDEEP

6144:oSUl75RTMtqi/ktdPzryZCti4rV99F2fuWf80fXvALuOLNc9r:8l74M5zr8CtLhoJfNfXvgL

Score

N/A

Malware Config

Signatures

Files

bd111712795f8c60bd12c17a519f11d19dd84233304bf1b82145b940cdb43172
.dll windows x86

4cd7bf35617af168837af43eaea57990

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetWindowExtEx
SetWindowOrgEx
SetTextAlign
TextOutA
SaveDC
GetDeviceCaps
GetClipBox
DeleteMetaFile
CreateRectRgnIndirect
StretchBlt
CreateMetaFileA

oleaut32

SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayAccessData
RegisterTypeLi
OleCreatePropertyFrame
LoadTypeLi
LoadRegTypeLi
VariantInit
VariantClear
VariantChangeType
VarUI4FromStr
UnRegisterTypeLi
SysStringLen
SysStringByteLen
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
SysAllocString
SafeArrayUnaccessData
SafeArrayGetVartype

user32

RegisterClassExA
CharNextA
CreateWindowExA
DrawIcon
EndPaint
GetClassInfoExA
GetClientRect
GetFocus
GetKeyState
GetParent
UnionRect
SwitchToThisWindow
ShowWindow
SetWindowRgn
SetWindowPos
SetWindowLongA
SetFocus
ReleaseDC
GetWindowLongA
PtInRect
OffsetRect
IsWindow
IsGUIThread
IsChild
InvalidateRect
BeginPaint

ole32

CoCreateInstance
CoCreateInstanceEx
CoImpersonateClient
CoTaskMemAlloc
CreateDataAdviseHolder
CreateOleAdviseHolder
OleLoadFromStream
OleRegEnumVerbs
OleRegGetUserType
OleSaveToStream

kernel32

GetACP
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemInfo
GetStartupInfoA
GetProcessPriorityBoost
GetProcAddress
GetModuleHandleA
GetLastError
GetCurrentProcessId
lstrlenW
lstrlenA
lstrcmpiA
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualFree
VirtualAlloc
TerminateProcess
Sleep
SizeofResource
SetLastError
SetHandleCount
RtlUnwind
RaiseException
QueryPerformanceCounter
MultiByteToWideChar
MulDiv
LoadResource
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
GetCommandLineA
DisableThreadLibraryCalls
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
GetCPInfo
InitializeCriticalSection

advapi32

RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

Exports

Exports

BadArgument
IgnoreErrors
Module_AddObject
ParseFile
_Contains
_New
_ReadlineFunctionPointer
convert_from_time_t
strategy

Sections

.text
Size: 147KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 70KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4cd7bf35617af168837af43eaea57990

Headers

File Characteristics

Imports

gdi32

oleaut32

user32

ole32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 147KB - Virtual size: 147KB

.rdata Size: 70KB - Virtual size: 69KB

.data Size: 33KB - Virtual size: 35KB

.rsrc Size: 74KB - Virtual size: 74KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 147KB - Virtual size: 147KB

.rdata
Size: 70KB - Virtual size: 69KB

.data
Size: 33KB - Virtual size: 35KB

.rsrc
Size: 74KB - Virtual size: 74KB

.reloc
Size: 10KB - Virtual size: 10KB