d1b2573f3f789e090652f967ec6f389928c87f5804a224f08a5943a9ad8cbfb1

Sharing

Copy URL Twitter E-mail

General

Target

d1b2573f3f789e090652f967ec6f389928c87f5804a224f08a5943a9ad8cbfb1
Size

206KB
MD5

6c53f5d9982e9a4d51e1dc557a020db9
SHA1

a7b4b130d95b218eac5c135b33c64e688d164c84
SHA256

d1b2573f3f789e090652f967ec6f389928c87f5804a224f08a5943a9ad8cbfb1
SHA512

33bd0ba5ba163844a52fe7070f1d63b2040a2448f6d19dbbd0d4afe645cd4dda5147e055523a720b5c70e8c899b77c8f68a82a51d9f0acd699cd468c99f162d0
SSDEEP

3072:NJGbVOL9amEabs3SOgvMKon0OIDW+79mLx19HbuG8yq3jjdNCsO5D0yNtytMFT8:NJGr5Jgn2+8Lx/CLtux0yNgi

Score

N/A

Malware Config

Signatures

Files

d1b2573f3f789e090652f967ec6f389928c87f5804a224f08a5943a9ad8cbfb1
.dll windows x86

8968dcd56f4b64f0cf6787a30a944241

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableWindow
EnumWindows
IsDialogMessageA
GetDesktopWindow
CharLowerBuffA
CharLowerA
SetWindowTextA
GetMenuItemCount
GetCursor
ShowScrollBar
DrawMenuBar
TrackPopupMenu
CheckMenuItem
DispatchMessageA
GetScrollPos
GetDlgItem
GetSysColor
DeferWindowPos
CreateIcon
GetClassLongA
GetFocus
GetActiveWindow
SetWindowPos
GetScrollInfo
EnumChildWindows
CallNextHookEx
GetCapture
SetTimer
EnumThreadWindows
IsWindowVisible
CreateMenu
DrawIcon
GetSubMenu
GetIconInfo
FillRect
HideCaret

oleaut32

SafeArrayGetUBound
SysAllocStringLen
VariantChangeType
SafeArrayCreate
SafeArrayPtrOfIndex
OleLoadPicture

shell32

DragQueryFileA
SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
Shell_NotifyIconA

kernel32

SetThreadLocale
GetDateFormatA
ExitProcess
SetEndOfFile
lstrcpyA
GetFileAttributesA
GetProcessHeap
HeapAlloc
SetEvent
EnumCalendarInfoA
FindClose
CompareStringA
MoveFileExA
GetDiskFreeSpaceA
Sleep
EnterCriticalSection
GetOEMCP
SetFilePointer
FindFirstFileA
GlobalDeleteAtom
FreeLibrary
lstrcmpiA
LoadResource
MoveFileA
HeapFree
GetVersionExA
FormatMessageA
ResetEvent
GetStdHandle
GetACP
GetCurrentProcessId
CreateEventA
GetModuleFileNameA
VirtualAlloc
GlobalAlloc
CloseHandle
GetCurrentThreadId
GetCurrentThread
GetStringTypeW
LocalAlloc
GetCommandLineA
SetErrorMode
GetLocalTime
SetHandleCount
LocalReAlloc
VirtualAllocEx
LockResource
GetModuleHandleA
GetFileType
GetStartupInfoA
GetFileSize
GetCurrentProcess
InitializeCriticalSection
SizeofResource
VirtualFree
WaitForSingleObject
DeleteFileA
LoadLibraryA
MulDiv
FindResourceA
lstrcpynA
ReadFile
lstrlenA
GetFullPathNameA
GetTickCount

msvcrt

memcpy
memmove
strncmp
tan

comdlg32

GetSaveFileNameA
ChooseColorA

gdi32

LineTo
GetPaletteEntries

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 946B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8968dcd56f4b64f0cf6787a30a944241

Headers

File Characteristics

Imports

user32

oleaut32

shell32

kernel32

msvcrt

comdlg32

gdi32

Sections

.text Size: 44KB - Virtual size: 43KB

.tls Size: 512B - Virtual size: 164KB

DATA Size: 156KB - Virtual size: 156KB

.rdata Size: 1KB - Virtual size: 1KB

.bss Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 946B

.text
Size: 44KB - Virtual size: 43KB

.tls
Size: 512B - Virtual size: 164KB

DATA
Size: 156KB - Virtual size: 156KB

.rdata
Size: 1KB - Virtual size: 1KB

.bss
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 946B