e1c27d46781e2ff7cd1182fb667b882e387c365d16c2bbaa2b16078a5058c9b1

Sharing

Copy URL Twitter E-mail

General

Target

e1c27d46781e2ff7cd1182fb667b882e387c365d16c2bbaa2b16078a5058c9b1
Size

216KB
MD5

c9cd5abc434eb5b6b9b897693a9ad74b
SHA1

4fee039ef6d2eb80199658aeacf8279c5810917a
SHA256

e1c27d46781e2ff7cd1182fb667b882e387c365d16c2bbaa2b16078a5058c9b1
SHA512

d2b8a31746a1b283cee12a0738b9a3e3318a54ada6262b188b695c0c45a74624f6ae5a371594e38fc5eb0c4b02498bb875cb8756df7386e32024a2a7eab49518
SSDEEP

6144:o4r8/a2CfHegLwg/LhCvHOZn/TNrU0tdRgtN:oLbCPeovWU/TNrUKRgX

Score

N/A

Malware Config

Signatures

Files

e1c27d46781e2ff7cd1182fb667b882e387c365d16c2bbaa2b16078a5058c9b1
.dll windows x86

03bef5d40d3de59d1be3ff1f615f9fae

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

UnrealizeObject
GetTextCharsetInfo
CreateDiscardableBitmap
DeleteDC
SetViewportOrgEx
GetPaletteEntries
SetTextAlign
GetWindowOrgEx
ExcludeClipRect
CreateBitmapIndirect
GetCurrentObject
StartPage
GetDIBits
GetTextColor
LPtoDP
SetROP2
SetDIBitsToDevice

kernel32

SetErrorMode
SuspendThread
GetStringTypeExW
HeapUnlock
HeapWalk
IsValidLanguageGroup
DeleteAtom
SleepEx
GetExitCodeThread
GetWindowsDirectoryW
FindCloseChangeNotification
GetCommState
CreateFileMappingA
GetComputerNameA
GetCommandLineA
SetThreadLocale
SetFileAttributesW
GetModuleHandleW

msvcrt

memcpy

user32

CharUpperBuffA
GetMenu
GetParent
UpdateWindow
EnumThreadWindows
GetForegroundWindow
GetAltTabInfoW
SetParent
GetWindow
CharUpperA
MapDialogRect
InvalidateRgn
TranslateAcceleratorW
GetClassNameW
GetUserObjectInformationA
SendDlgItemMessageW
GetMessagePos
LoadImageA
TabbedTextOutW
GetWindowLongA
IsRectEmpty
GetKeyboardLayout
SetWindowPos
SetClassLongW
ReplyMessage
GetSubMenu
GetScrollInfo
PostMessageA
CallWindowProcA
PostMessageW
CharUpperW
FindWindowW
LoadStringW
GetClientRect
GetDialogBaseUnits
SetForegroundWindow
IsIconic
EnumWindows

version

VerQueryValueA

Exports

Exports

AlphaBlend
GradientFill
TransparentBlt
?IDdkJjkdID7@@YGKEPA_WG@Z

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bld_1
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bld_2
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bld_3
Size: 512B - Virtual size: 461B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.debug
Size: 512B - Virtual size: 118B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 140KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

03bef5d40d3de59d1be3ff1f615f9fae

Headers

File Characteristics

Imports

gdi32

kernel32

msvcrt

user32

version

Exports

Exports

Sections

.text Size: 53KB - Virtual size: 53KB

.idata Size: 2KB - Virtual size: 1KB

.bld_1 Size: 512B - Virtual size: 320B

.bld_2 Size: 512B - Virtual size: 320B

.bld_3 Size: 512B - Virtual size: 461B

.data Size: 1KB - Virtual size: 85KB

.rdata Size: 13KB - Virtual size: 13KB

.debug Size: 512B - Virtual size: 118B

.rsrc Size: 140KB - Virtual size: 140KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 53KB - Virtual size: 53KB

.idata
Size: 2KB - Virtual size: 1KB

.bld_1
Size: 512B - Virtual size: 320B

.bld_2
Size: 512B - Virtual size: 320B

.bld_3
Size: 512B - Virtual size: 461B

.data
Size: 1KB - Virtual size: 85KB

.rdata
Size: 13KB - Virtual size: 13KB

.debug
Size: 512B - Virtual size: 118B

.rsrc
Size: 140KB - Virtual size: 140KB

.reloc
Size: 2KB - Virtual size: 1KB