a52ef9cfe50bf3c8ce4b61fde6e451d26759520ec2e98d0547a9c65878106ea3

Sharing

Copy URL Twitter E-mail

General

Target

a52ef9cfe50bf3c8ce4b61fde6e451d26759520ec2e98d0547a9c65878106ea3
Size

52KB
MD5

96ac79a4f0825b51404d10a7b7620a70
SHA1

f9f500e901520f1bf3ae097b6945758b46edc399
SHA256

a52ef9cfe50bf3c8ce4b61fde6e451d26759520ec2e98d0547a9c65878106ea3
SHA512

823967a6eff90cdb4915d0cceb6aa49ce9b2a60f44e31c82ac012cdf867f07984ca31d7ee1f0002d1c9853259e80ac3589b720acd271fd2c1247ef6b612c4500
SSDEEP

1536:W/otWHWkNBRGiJWF9U4nJM0y6Ww2ulE+CeKb12slP4mL1zrv:W/otHkNBRGEWF9zMR672mEneKb1/91Rv

Score

N/A

Malware Config

Signatures

Files

a52ef9cfe50bf3c8ce4b61fde6e451d26759520ec2e98d0547a9c65878106ea3
.dll windows x86

b7664779462e3d0a0b662eeeea7d7be7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
GetFocus
EnableWindow
InvalidateRect
PeekMessageW
SendMessageW
SetForegroundWindow
GetSystemMetrics
PostQuitMessage
KillTimer
IsDlgButtonChecked
SetCursor
GetDesktopWindow

advapi32

RegQueryValueExW
OpenThreadToken
RegEnumValueW
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyExW
RegQueryValueExA
RegCloseKey
RegOpenKeyW
OpenProcessToken
RegSetValueExA
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW
SetSecurityDescriptorDacl
RegSetValueExW
RegCreateKeyExW
RegQueryInfoKeyW

kernel32

InterlockedExchange
CreateFileW
GetProcessHeap
GetCurrentThreadId
VirtualFree
HeapAlloc
lstrlenA
GetModuleHandleA
GetVersion
ReadFile
GetCurrentThread
GetProcAddress
GetCurrentProcess
LocalFree
GetModuleFileNameW
GetSystemTimeAsFileTime
VirtualAlloc
InitializeCriticalSection
GetCommandLineA
Sleep
LoadLibraryW
GetCurrentProcessId
ExitProcess

msvcrt

realloc
_ftol
exit
_CxxThrowException

gdi32

PatBlt
GetTextExtentPointW
SetBkColor
SetMapMode
ExtTextOutA
MoveToEx
SetMetaRgn
CreateSolidBrush
GetObjectW
DeleteMetaFile
GetClipBox
SetWindowExtEx
RestoreDC
StretchBlt
SetTextAlign
SelectPalette
GetStockObject
IntersectClipRect
StretchDIBits

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoW
GetFileVersionInfoSizeW

Exports

Exports

Hifzawvrtijrafe
KoRbhdtuaqpLxjm
FcbtsDVzAcbj

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 17KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 15KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7664779462e3d0a0b662eeeea7d7be7

Headers

File Characteristics

Imports

user32

advapi32

kernel32

msvcrt

gdi32

version

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.data Size: 5KB - Virtual size: 17KB

.idata Size: 17KB - Virtual size: 93KB

.idata Size: 15KB - Virtual size: 59KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 9KB - Virtual size: 9KB

.data
Size: 5KB - Virtual size: 17KB

.idata
Size: 17KB - Virtual size: 93KB

.idata
Size: 15KB - Virtual size: 59KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB