b87386510774c613050889aed7416b127385778b0355bca8b9af082c0ae42917

Sharing

Copy URL Twitter E-mail

General

Target

b87386510774c613050889aed7416b127385778b0355bca8b9af082c0ae42917
Size

104KB
MD5

7a66b8fa48fe4ce0ea3c1654453c79d4
SHA1

cee2d9742be6c2682841e1ca753e34485227caf9
SHA256

b87386510774c613050889aed7416b127385778b0355bca8b9af082c0ae42917
SHA512

c7fca3bee7d7d65a60e64068299c79db2a73e29de01b4bf2c4e8d20c9a132db87987e819f9ca827041c4969de553b7562ee51b7829030da7489f23248e1758ec
SSDEEP

1536:xOByKCW4Z7Ufyy8tU9AVz6zDprN4+d74Kurk+i2MdMJck5wq+lEwDE+lDZ:xOByKIayy8NZ6zRN448KWk+MMuEAlD

Score

N/A

Malware Config

Signatures

Files

b87386510774c613050889aed7416b127385778b0355bca8b9af082c0ae42917
.dll windows x86

71391c7c9cd9805af8fbeb6c61066123

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
CreateThread
GetModuleHandleW
GetLocalTime
GetSystemTime
LCMapStringW
GetProcessHeap
SetEvent
Sleep
IsDBCSLeadByte
GetTickCount
GetACP
lstrcmpiA
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
GetStringTypeW
GetStringTypeA
FormatMessageW
LCMapStringA
HeapSize
LoadLibraryA
GetCPInfo
GetOEMCP
UnhandledExceptionFilter
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
GetModuleHandleA
VirtualProtect
GetCommandLineA
MultiByteToWideChar
GetProcAddress
ExitProcess
HeapAlloc
HeapFree
RtlUnwind
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
InterlockedExchange
VirtualQuery
GetSystemInfo

user32

PtInRect
wsprintfA
CharUpperA
DefWindowProcW
UnregisterClassW
DestroyWindow
GetMessageW
CreateWindowExW
RegisterClassW
DialogBoxParamW
SetWindowTextW
LoadIconW
GetDC
DrawIcon
ReleaseDC
GetCursorPos
LoadStringW
MessageBoxW
SetFocus
SendMessageW
EndDialog
GetDlgItem
GetWindowPlacement
SetWindowPlacement
ShowWindow
LoadBitmapW
EnableWindow
ScreenToClient

advapi32

CryptReleaseContext
CryptAcquireContextW

ole32

CoTaskMemAlloc

Sections

.text
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

71391c7c9cd9805af8fbeb6c61066123

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

Sections

.text Size: 80KB - Virtual size: 76KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 35KB

.rsrc Size: 4KB - Virtual size: 1024B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 80KB - Virtual size: 76KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 35KB

.rsrc
Size: 4KB - Virtual size: 1024B

.reloc
Size: 4KB - Virtual size: 3KB