5608f767d6f9a51598af0c747303098eabc5e1295e5dcdab86a079826088f0c6

Sharing

Copy URL

Twitter E-mail

General

Target

5608f767d6f9a51598af0c747303098eabc5e1295e5dcdab86a079826088f0c6
Size

136KB
MD5

a97b0b35bde9e5b2c833443708cf4690
SHA1

27d76d5689e3d0e94a2476226b002912ca86dc50
SHA256

5608f767d6f9a51598af0c747303098eabc5e1295e5dcdab86a079826088f0c6
SHA512

7bdeb2eae0ad9665f6ab52fa5330efea07e4968cb9b7b92b3d6d85cdc0a906751c48ce4dfcc3c1f4551c7d7df3d6df84f0e4756a5524ea6cbb03e321a2b5c67c
SSDEEP

3072:vBUbyB+TwXMhN08H7PMZetfGIuc2gvvRs+:ZpEUmN0uLYgB

Score

N/A

Malware Config

Signatures

Files

5608f767d6f9a51598af0c747303098eabc5e1295e5dcdab86a079826088f0c6
.dll windows x86

9c235f83ce1a39f9bfa4fc1b0b05dc89

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
GlobalAlloc
GlobalReAlloc
GlobalSize
FreeResource
SizeofResource
LockResource
LoadResource
FindResourceA
LocalAlloc
LocalFree
CreateFileA
lstrcmpA
GetFileAttributesA
GetProcAddress
GetModuleFileNameA
GetTempPathA
DeleteFileA
CloseHandle
GetCurrentDirectoryA
GetLocalTime
FindClose
FindNextFileA
FindFirstFileA
EnumResourceLanguagesA
WideCharToMultiByte
ReadFile
WriteFile
SetFilePointer
GlobalHandle
IsDBCSLeadByte
GetModuleHandleA
VirtualProtect
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcessHeap
GetModuleHandleW
CreateProcessA
GetTempFileNameA
HeapFree
HeapAlloc
LoadLibraryW
InterlockedExchange
Sleep
InterlockedCompareExchange
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetLastError
GlobalFree
GlobalUnlock
GetCurrentThread
lstrlenA
MulDiv
MultiByteToWideChar
FreeLibrary
RaiseException
LoadLibraryA
FormatMessageA
GetSystemDirectoryW
LoadLibraryExW
GetTickCount
GetLocaleInfoA
GetCPInfo
SetErrorMode
GetSystemDefaultLangID
GetVersion
lstrcmpiA
GetACP

gdi32

GetStockObject
CreateRectRgn
CombineRgn
GetObjectA
Rectangle
ExcludeClipRect
GetTextExtentPointA
GetTextMetricsA
GetTextColor
TextOutA
SelectObject
CreateFontIndirectA
GetCurrentObject
SetTextColor
RectVisible
InvertRgn
GetClipBox
GetNearestColor
StretchBlt
CreateCompatibleBitmap
Ellipse
GetBitmapBits
Polygon
CreatePolygonRgn
PtInRegion
RectInRegion
UnrealizeObject
CreateSolidBrush
StretchDIBits
GetDIBits
SelectPalette
GetTextExtentPoint32A
FillRgn
SetROP2
GetROP2
GetBkColor
SetRectRgn
OffsetRgn
GetCharWidthA
GetTextFaceA
SetBkMode
CreateCompatibleDC
DeleteDC
RestoreDC
SaveDC
SetMapMode
SetMapperFlags
GetViewportOrgEx
GetWindowExtEx
GetViewportExtEx
GetWindowOrgEx
CreateBitmap
CreatePen
RealizePalette
LineTo
PatBlt
BitBlt
GetDeviceCaps
DeleteObject
CreatePatternBrush
SetBkColor
CreateDIBitmap
ExtTextOutA
SetStretchBltMode
SetBrushOrgEx
MoveToEx

comctl32

PropertySheetA

comdlg32

GetOpenFileNameA
ChooseFontA
GetSaveFileNameA
CommDlgExtendedError

advapi32

RegQueryValueExW
RegEnumValueA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyExW

ole32

OleUninitialize
BindMoniker
CoCreateInstance
OleInitialize
CoGetMalloc
StringFromGUID2

oleaut32

SysFreeString
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysStringLen

shlwapi

wnsprintfA

odbc32

ord10
ord51
ord8
ord6
ord50
ord1
ord23
ord22
ord58
ord72
ord12
ord54
ord5
ord63
ord57
ord41
ord3
ord9
ord14
ord19
ord20
ord42
ord71
ord52
ord15
ord2
ord13
ord4
ord40
ord16
ord18
ord11
ord45
ord67
ord66
ord47
ord44

Sections

.text
Size: 90KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 192KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.shared
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 232B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c235f83ce1a39f9bfa4fc1b0b05dc89

Headers

File Characteristics

Imports

kernel32

gdi32

comctl32

comdlg32

advapi32

ole32

oleaut32

shlwapi

odbc32

Sections

.text Size: 90KB - Virtual size: 160KB

.bss Size: - Virtual size: 192KB

.pdata Size: 4KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 4KB

.rdata Size: 4KB - Virtual size: 4KB

.tls Size: 4KB - Virtual size: 4KB

.shared Size: 4KB - Virtual size: 4KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 4KB - Virtual size: 232B

.text
Size: 90KB - Virtual size: 160KB

.bss
Size: - Virtual size: 192KB

.pdata
Size: 4KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 4KB

.rdata
Size: 4KB - Virtual size: 4KB

.tls
Size: 4KB - Virtual size: 4KB

.shared
Size: 4KB - Virtual size: 4KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 4KB - Virtual size: 232B