ffa710fdb501e2b2059ad20ecf22107cc03e031f3c398935b9b15f55581ea756

Sharing

Copy URL Twitter E-mail

General

Target

ffa710fdb501e2b2059ad20ecf22107cc03e031f3c398935b9b15f55581ea756
Size

261KB
MD5

281aa99a152ef2324102208a7e851b8f
SHA1

4c913d4ad16a6b5bd3a073aae1420f68b9e95e02
SHA256

ffa710fdb501e2b2059ad20ecf22107cc03e031f3c398935b9b15f55581ea756
SHA512

681c51accb1f6ffc64cf9c237f0136db2cd66eb0de401b1b9cf2299dce3e1585b6d874a28be8375321485e276f88a14dea6a42694e0b18d44be0c27f03e41225
SSDEEP

6144:ww5SL9JpGvTnAkNm0RwV+LuJjGQeCPlMnpRtvnuTby:wvbpGvTnHNxa+49eoMv1ncm

Score

N/A

Malware Config

Signatures

Files

ffa710fdb501e2b2059ad20ecf22107cc03e031f3c398935b9b15f55581ea756
.dll windows x86

291d715aaec714837048b78b81d3e565

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpyA
lstrlenA
CreateMutexA
WriteFile
SetFilePointer
CreateFileA
WideCharToMultiByte
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcatA
CreateProcessA
DeleteFileA
GetSystemDirectoryA
CompareFileTime
SystemTimeToFileTime
GetWindowsDirectoryA
Sleep
GetTempPathA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
GetLastError
CreateThread
WaitForSingleObject
CloseHandle
GetLocalTime
GetExitCodeThread

advapi32

RegDeleteValueA
RegCloseKey
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegCreateKeyExA

wininet

InternetReadFile
InternetCrackUrlA
InternetConnectA
HttpOpenRequestA
HttpSendRequestA
InternetOpenUrlA
InternetOpenA
InternetCloseHandle
InternetSetFilePointer

msvcrt

_strrev
_strdup
free
strstr
__CxxFrameHandler
strlen
realloc
calloc
strcat
??2@YAPAXI@Z
memset
??3@YAXPAX@Z
strcpy
_CxxThrowException
sprintf
toupper
memcpy
fclose
fread
fopen
strcmp
sscanf
strncpy
atoi
time
??1type_info@@UAE@XZ
_initterm
malloc
_adjust_fdiv

msvcp60

??4?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV01@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBDABV?$allocator@D@1@@Z
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV?$allocator@D@1@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z

iphlpapi

GetAdaptersInfo

Exports

Exports

CryptimgShellNotify

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

291d715aaec714837048b78b81d3e565

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

msvcrt

msvcp60

iphlpapi

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.text1 Size: 512B - Virtual size: 28B

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 1KB

.data1 Size: 2KB - Virtual size: 2KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.text1
Size: 512B - Virtual size: 28B

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 1KB

.data1
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB