deb5cb68dc10bc4df02a52d1fb1bc97dfb584039f632e2475f730348425c8e17

Sharing

Copy URL Twitter E-mail

General

Target

deb5cb68dc10bc4df02a52d1fb1bc97dfb584039f632e2475f730348425c8e17
Size

449KB
MD5

da7648dc628e36aed88db2cb7f20a428
SHA1

192b9eff3bfd2a269f0f010315befcfcf9a2a19e
SHA256

deb5cb68dc10bc4df02a52d1fb1bc97dfb584039f632e2475f730348425c8e17
SHA512

7ac1e93eb02e70e0ea734d4ca143012d30885f23dc23437dc95fa841a0c4f168b28a0395f87ea6cda518092521a26a51baa7446f4932ed9fd01f745a095d96d1
SSDEEP

6144:nENzRZYDARVbCayibufFEjTCHN1Hwt/wzYwsMz4J9O8eq6cx1GXVeSFrXMhHhyk+:nENzRZ9ZHzjAQVxwsMAf1GFBrXM7+

Score

N/A

Malware Config

Signatures

Files

deb5cb68dc10bc4df02a52d1fb1bc97dfb584039f632e2475f730348425c8e17
.dll windows x86

6ac5a0cc2d56842f85a90ecd7b29b2ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA

kernel32

GetStartupInfoA
GetSystemDirectoryA
GetSystemTimeAsFileTime
GetTickCount
GetVersionExA
GetWindowsDirectoryA
LoadLibraryA
QueryPerformanceCounter
GetProcessPriorityBoost
SetUnhandledExceptionFilter
Sleep
TerminateProcess
UnhandledExceptionFilter
VirtualAlloc
WaitForSingleObject
lstrlenA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetFullPathNameA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCommandLineA
FreeLibrary
CloseHandle
FindNextFileA
FindFirstFileA
FindClose
CreateProcessA
CopyFileA
SetLastError

advapi32

OpenProcessToken
SystemFunction015
RegSetValueExA
RegOpenKeyExA
RegOpenCurrentUser
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
OpenServiceA
OpenSCManagerA
LookupPrivilegeValueA
IsWellKnownSid
ImpersonateNamedPipeClient
GetTokenInformation
FreeSid
EqualSid
ControlService
CloseServiceHandle
AllocateAndInitializeSid
AdjustTokenPrivileges

msvcrt

_exit
_initterm
_onexit
_setmbcp
_strnicmp
_except_handler3
exit
sprintf
strncpy
strstr
_controlfp
_cexit
_c_exit
_adjust_fdiv
__setusermatherr
__set_app_type
__p__fmode
__p__commode
__getmainargs
__dllonexit
__CxxFrameHandler
_strupr
_XcptFilter

user32

PostMessageA
PeekMessageA
MessageBoxA
LoadIconA
IsIconic
GetScrollBarInfo
GetClientRect
ExitWindowsEx
EnableWindow
DrawIcon
DispatchMessageA
SetForegroundWindow

Exports

Exports

FromVoidPtrAndDesc
GetItemString
get_x_offset_pixels
vSetOptions

Sections

.text
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ac5a0cc2d56842f85a90ecd7b29b2ca

Headers

File Characteristics

Imports

shell32

kernel32

advapi32

msvcrt

user32

Exports

Exports

Sections

.text Size: 91KB - Virtual size: 91KB

.rdata Size: 215KB - Virtual size: 214KB

.data Size: 108KB - Virtual size: 111KB

.rsrc Size: 29KB - Virtual size: 29KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 91KB - Virtual size: 91KB

.rdata
Size: 215KB - Virtual size: 214KB

.data
Size: 108KB - Virtual size: 111KB

.rsrc
Size: 29KB - Virtual size: 29KB

.reloc
Size: 4KB - Virtual size: 3KB