c9e0eb18b78871f262abad23a6c7f0b61e257247a2af7f84850d19ad4c4f44a1

Sharing

Copy URL Twitter E-mail

General

Target

c9e0eb18b78871f262abad23a6c7f0b61e257247a2af7f84850d19ad4c4f44a1
Size

59KB
MD5

8e41b18f523b03e18fb6e85f33e6981c
SHA1

8a6b2c90ff2ebb4d8fd3f9a1427423da8ffc182e
SHA256

c9e0eb18b78871f262abad23a6c7f0b61e257247a2af7f84850d19ad4c4f44a1
SHA512

cdf27c62f63c511998d25a56ad3767b4e99bd9259d17f9c50c97e939333e200363cd81e8c4cb7e02eb88457cba372b2e5b0ee0cd09b8ffc8aaeac4ffb29ac479
SSDEEP

1536:ktfpsX9GCenm9lwcQMGkPU1GWihPfqjIgdRmy3rEIOoz:mCE1nmHwnbkPSGWihPSjIKos

Score

N/A

Malware Config

Signatures

Files

c9e0eb18b78871f262abad23a6c7f0b61e257247a2af7f84850d19ad4c4f44a1
.dll windows x86

12ab6020ace6dd5178805c6bc0df64fc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
ClearCommBreak
GetStdHandle
CreateDirectoryW
FindFirstVolumeA
CreateDirectoryExW
lstrcmpiA
HeapCompact
GetNumberOfConsoleMouseButtons
CreateDirectoryExA
GetOEMCP
SearchPathA
CallNamedPipeA
EnumUILanguagesW
EraseTape
FatalAppExitA
WritePrivateProfileSectionA
EnumSystemLocalesW
IsDBCSLeadByte
GetCommandLineW
SetFileAttributesW
CreateThread
GlobalDeleteAtom
UnhandledExceptionFilter
GetLastError
ReplaceFileW
Heap32ListNext
EscapeCommFunction
HeapValidate

msvcrt

_ui64tow
_wputenv
_adj_fprem
wcscmp
_local_unwind2
time
getc
gmtime
atoi
wcslen
_mbsncat
iswpunct
strncmp
_wstat
wcscat
memset
_mbsnccnt
strpbrk
_ismbchira
strcspn

gdi32

Polygon
GetGlyphOutlineWow
SetICMProfileA
GdiPrinterThunk
GdiFullscreenControl
SetPixelFormat
PlayMetaFile
TextOutW
EngCreateDeviceBitmap
GdiEndDocEMF
CreateDIBPatternBrushPt
GetTextAlign
GdiPlayDCScript
SetMapMode
ResetDCA
DeviceCapabilitiesExA
GetGlyphIndicesW
MoveToEx
GetWinMetaFileBits
GetAspectRatioFilterEx
SetColorSpace
IntersectClipRect
SetGraphicsMode
GetICMProfileW
TextOutA
GdiValidateHandle

user32

ToAscii
SetTaskmanWindow
MapVirtualKeyExA
TranslateMessageEx
SetClassWord
GetWindowModuleFileNameA
SetClassLongW
EnumPropsW
EnumPropsExW
ValidateRgn
WindowFromPoint
SetMenuItemBitmaps
GetDCEx
CreateWindowExW
SetWindowsHookW
WINNLSEnableIME
GetSysColor
DeregisterShellHookWindow
DlgDirSelectComboBoxExA
CloseWindow
GetMenuStringW
GetMenuInfo
GetTopWindow
BeginPaint
IsZoomed

shlwapi

PathIsURLA
PathStripToRootA
PathUnquoteSpacesA
PathUnmakeSystemFolderA
PathStripPathA
PathFindExtensionA
PathIsUNCServerShareA
StrStrIA
SHRegGetBoolUSValueW
StrStrW
SHCreateStreamOnFileA
SHStrDupW
UrlIsW
StrRetToStrA
PathCanonicalizeA
StrIsIntlEqualW
StrCatBuffA
StrCatBuffW
PathStripPathW
PathCombineA

Exports

Exports

CzoCbmt
AvhGdutwa
OaGwzulOmgyzMzbyytcVbn
XmjqysvVvniYgrpZw
ChnLvvxoht
NwiXssnscbYlhvpcb
XxnVgbwwjoFmkuwwoOnddNpw
KyuspnmDhkftbx

Sections

.text
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 736B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

12ab6020ace6dd5178805c6bc0df64fc

Headers

File Characteristics

Imports

kernel32

msvcrt

gdi32

user32

shlwapi

Exports

Exports

Sections

.text Size: 5KB - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 49KB - Virtual size: 48KB

.rsrc Size: 1024B - Virtual size: 736B

.reloc Size: 512B - Virtual size: 16B

.text
Size: 5KB - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 49KB - Virtual size: 48KB

.rsrc
Size: 1024B - Virtual size: 736B

.reloc
Size: 512B - Virtual size: 16B