febedd487f1d4a1222649d604d16e6552a978089df23cecb459e0b487c32a0ec

Sharing

Copy URL Twitter E-mail

General

Target

febedd487f1d4a1222649d604d16e6552a978089df23cecb459e0b487c32a0ec
Size

88KB
MD5

e006caf7438f5024c266c18cd7d4238e
SHA1

188d87dfab77bb4e9f1db9e63bb70838a4bafa8e
SHA256

febedd487f1d4a1222649d604d16e6552a978089df23cecb459e0b487c32a0ec
SHA512

d25849a84f2c8b50776fd582b1df24ee9d6e536702d8f8d8d2661bdbb00d846245ca805d5bb05e1d1b0a259ba9f08dbd0b46f62ffbb33000a51add1b437f2fe9
SSDEEP

1536:EGqlVohE1YcLcc95Il7dpF7hIgNZBM3JgFb9sMZcfxVCM:9q7LL/W7TFvIMZcJVCM

Score

N/A

Malware Config

Signatures

Files

febedd487f1d4a1222649d604d16e6552a978089df23cecb459e0b487c32a0ec
.dll windows x86

b9e1114a6eb7d57c91dad678ca076221

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileApisToOEM
IsBadHugeWritePtr
GetConsoleScreenBufferInfo
RegisterWaitForSingleObjectEx
ProcessIdToSessionId
FormatMessageA
EnumResourceNamesW
GetWindowsDirectoryW
SetProcessShutdownParameters
OpenSemaphoreW
HeapDestroy
GetLogicalDriveStringsA
GetExitCodeProcess
EnumResourceNamesA
GetVersionExW
PurgeComm
FindNextFileA
OpenSemaphoreA
HeapUnlock
IsBadCodePtr
GetStringTypeW
FreeEnvironmentStringsW
GetShortPathNameA
SetCommBreak
RtlMoveMemory
GetProfileStringW
ExpandEnvironmentStringsA
GetFileAttributesA
GetUserDefaultUILanguage
OpenEventA
lstrcmpA
SetSystemTime
UpdateResourceA
LockResource
CreateTimerQueue
ReleaseSemaphore
GetVersionExA
DisconnectNamedPipe
CreateIoCompletionPort
GetFullPathNameW
GetSystemTimeAdjustment
GetCompressedFileSizeW
FlushFileBuffers
ReadConsoleInputA
BindIoCompletionCallback
GetSystemDefaultLangID
DeleteTimerQueueTimer
FindVolumeMountPointClose
GlobalFindAtomW
LocalReAlloc
LocalHandle
WinExec
ReadFileEx
ConnectNamedPipe
CreateWaitableTimerW
GetTimeFormatA
GetBinaryTypeW
IsValidCodePage
CompareFileTime
EnumResourceLanguagesW
FindClose
UnregisterWaitEx
GetHandleInformation
HeapLock
RtlUnwind
DeleteFileW
GetTempFileNameW
ActivateActCtx
IsValidLocale
DosDateTimeToFileTime
ReleaseMutex
WriteFile
GetProcAddress
MapViewOfFile
lstrlenW
InterlockedCompareExchange
LeaveCriticalSection
GetModuleHandleA
VirtualProtect
lstrlenA
GetComputerNameA
InterlockedExchange
GetModuleFileNameA
GetCommandLineA
AddRefActCtx
LoadLibraryA

ole32

OleCreateFromData
StgOpenStorageEx
CreateFileMoniker
CoEnableCallCancellation
OleSaveToStream
CoGetInterfaceAndReleaseStream
CreateILockBytesOnHGlobal
PropVariantCopy
CoReleaseMarshalData
OleDoAutoConvert
OleCreateLinkFromData
CoMarshalInterThreadInterfaceInStream
CoInitializeEx
OleRegGetMiscStatus
CoWaitForMultipleHandles
CreateAntiMoniker
CoInitialize
CoImpersonateClient

oleaut32

SysAllocString
SysStringByteLen

shlwapi

StrChrA
SHGetValueA
PathParseIconLocationW
StrCpyW
StrChrIW
SHRegGetBoolUSValueW
PathIsUNCW
StrToIntExW
PathMakePrettyW
SHRegSetUSValueW
PathCompactPathW
SHAutoComplete
StrFormatByteSizeW
StrStrIW
PathGetCharTypeW
StrCatW
PathRemoveBlanksW
PathRemoveBackslashW

gdi32

CreateDIBSection
Polyline
CreateFontA
StartDocA
GetDCOrgEx
GetOutlineTextMetricsA
CreatePolygonRgn
GetTextExtentPointW
PatBlt
GetObjectType
GetBitmapBits
GetRandomRgn
GetPolyFillMode
UpdateColors
Arc
CreateCompatibleDC
CreateRectRgn
CreateCompatibleBitmap
CreateDiscardableBitmap
CreateICA
GetMetaFileBitsEx
GetTextColor
RealizePalette
ExtEscape
ScaleWindowExtEx
SetStretchBltMode
GetMapMode
GetSystemPaletteUse
GetViewportExtEx
SetROP2
GetROP2
AnimatePalette

Exports

Exports

odbcmapSvcs

Sections

.text
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9e1114a6eb7d57c91dad678ca076221

Headers

File Characteristics

Imports

kernel32

ole32

oleaut32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 64KB - Virtual size: 60KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 64KB - Virtual size: 60KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB