bc2c6ee146fc6344d6f4a67bff9fecd9df2a3812df3860d720a57dc58b17b2a5

Sharing

Copy URL Twitter E-mail

General

Target

bc2c6ee146fc6344d6f4a67bff9fecd9df2a3812df3860d720a57dc58b17b2a5
Size

107KB
MD5

0dce66a57a13a0f90de964c816b0d82d
SHA1

a79025a057f9c9ab519ab85cedb2b79cf8af1e57
SHA256

bc2c6ee146fc6344d6f4a67bff9fecd9df2a3812df3860d720a57dc58b17b2a5
SHA512

0c18139bbd87ec85ace233023da9a18c80b30483cb02fc135069565b32fecd2b9b7c31c1fb5e4934dc50337b2d2c1254d99c8503a26a27b7797574cd8e226fe1
SSDEEP

3072:wQsb7urHyHy75OUUQm7LqLOlJ3dBdO6fE6RGCElDy329:wZ7uwy75inqKlJHFccGCu9

Score

N/A

Malware Config

Signatures

Files

bc2c6ee146fc6344d6f4a67bff9fecd9df2a3812df3860d720a57dc58b17b2a5
.dll windows x86

68f23d7670983010e72a396d9051e275

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
OutputDebugStringA
LoadLibraryExW
FreeLibrary
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetStringTypeW
GetStringTypeA
LCMapStringW
WideCharToMultiByte
HeapSize
GetCPInfo
GetOEMCP
GetEnvironmentStringsW
GetLastError
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
ExitProcess
VirtualQuery
InterlockedExchange
HeapReAlloc
GetACP
lstrlenW
GetCommandLineA
lstrcmpW
lstrlenA
LocalFree
lstrcpyW
MultiByteToWideChar
GetProcAddress
GetModuleFileNameA
GetModuleHandleA
LocalAlloc
VirtualProtect
LCMapStringA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
HeapAlloc
HeapFree
RtlUnwind
GetSystemInfo

user32

GetKeyState
wsprintfA
GetDlgItemTextW
SetWindowLongW
PostMessageW
GetClipboardData
SendMessageW
GetFocus
GetCaretPos
GetParent
LoadStringW
SetWindowTextW
GetDlgItem
LoadCursorW
SendDlgItemMessageW
EndDialog
SetDlgItemTextW
MessageBoxW
GetDC
SetFocus
ShowWindow
CreateWindowExW
DialogBoxParamW
MapWindowPoints
GetWindowRect
GetWindowTextW
SetCursor

advapi32

RegOpenKeyExA
RegDeleteKeyA
CryptAcquireContextW
RegSetValueExW
RegCreateKeyExW
RegConnectRegistryW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
CryptReleaseContext
RegSetValueExA

gdi32

GetTextExtentPoint32W

ole32

CLSIDFromString
CoCreateInstance

rpcrt4

NdrClientCall2

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68f23d7670983010e72a396d9051e275

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

rpcrt4

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 39KB - Virtual size: 39KB

.data Size: 4KB - Virtual size: 36KB

.rsrc Size: 3KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 39KB - Virtual size: 39KB

.data
Size: 4KB - Virtual size: 36KB

.rsrc
Size: 3KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 3KB