f483d07291a2e8f08a42e110f44279c568f2258e96ab2daaa572461507acd90a

General

Target

f483d07291a2e8f08a42e110f44279c568f2258e96ab2daaa572461507acd90a
Size

400KB
MD5

ea08778e1ddc3ad299d5123e57a39c60
SHA1

f4484e8edf9e15b8f121de9d72b48d716289363f
SHA256

f483d07291a2e8f08a42e110f44279c568f2258e96ab2daaa572461507acd90a
SHA512

5ed5f27961e9e533ea1e52bcdc6430e1b4404d6c5a902d7f03a57ac9d4346a5e0c2d0d7913bc8aa293f8e06bbb5d11feaaac656c85f09d86e1f40ba887c9ccdd
SSDEEP

6144:9VeV3Yz/sPVxmZw0jto8eZhKtFqy2933JaEEwroLaIDSvfgQF/24IXzZk8JTJ6:YgOVxmaGeZct3gEwEOxPtFma

Score

N/A

Malware Config

Signatures

Files

f483d07291a2e8f08a42e110f44279c568f2258e96ab2daaa572461507acd90a
.dll windows x86

beda02110eb8f1c89bcbdb09f14e60c7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnhookWindowsHookEx
SetWindowsHookExA
RegisterWindowMessageA
PostMessageA
GetWindowLongA
CallNextHookEx

kernel32

HeapCreate
lstrcpyA
WriteFile
WideCharToMultiByte
VirtualFree
VirtualAlloc
TerminateProcess
DisableThreadLibraryCalls
EnterCriticalSection
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetACP
GetCPInfo
GetCommandLineA
GetEnvironmentVariableA
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessPriorityBoost
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetTickCount
GetVersion
SetLastError
HeapDestroy
HeapFree
HeapReAlloc
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LCMapStringA
LCMapStringW
LeaveCriticalSection
MultiByteToWideChar
RtlUnwind
SetHandleCount

dbghelp

SymMatchString
lmi
ImageRvaToSection

Exports

Exports

GetFuncName
StringAFini
XMLCharRefReplaceErrors
_Concat
get_channels
get_compression_type
get_y_pixels_per_meter

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 94KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 55KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

beda02110eb8f1c89bcbdb09f14e60c7

Headers

File Characteristics

Imports

user32

kernel32

dbghelp

Exports

Exports

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 94KB - Virtual size: 94KB

.data Size: 87KB - Virtual size: 87KB

.rsrc Size: 55KB - Virtual size: 55KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 94KB - Virtual size: 94KB

.data
Size: 87KB - Virtual size: 87KB

.rsrc
Size: 55KB - Virtual size: 55KB

.reloc
Size: 12KB - Virtual size: 11KB