cbfdb71f55f98334a73d1a56d2558ea772e7941ff3e099402c0766d0e09b1000

General

Target

cbfdb71f55f98334a73d1a56d2558ea772e7941ff3e099402c0766d0e09b1000
Size

21KB
MD5

4afcd6de907e8355f459f62d8e9ca0b1
SHA1

f4028d8659c8dcb58bf5f4fbb213a4fba69bf514
SHA256

cbfdb71f55f98334a73d1a56d2558ea772e7941ff3e099402c0766d0e09b1000
SHA512

627c6ff0862d21ca1e7c0f97582675c7784efe583a5487e1219e2ea4c828f4925f1ecfda6609c24a3bfed9599788658fe471dde523b25893d4c4441fe3e07d07
SSDEEP

384:Vo5CgK3xeH3srGrsIpcDPNoFNNViXhlT:25ukSWcjeH3M

Score

N/A

Malware Config

Signatures

Files

cbfdb71f55f98334a73d1a56d2558ea772e7941ff3e099402c0766d0e09b1000
.dll windows x86

42441f5a20e5f5a87ab5a5e730ac748f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_initterm
free
_beginthreadex
time
fseek
fread
fclose
strchr
atoi
memcpy
strtok
strrchr
malloc
wcscmp
_strrev
_stricmp
__CxxFrameHandler
abs
sprintf
strncmp
strcat
fopen
fgets
strcmp
strstr
strcpy
strlen
??2@YAPAXI@Z
memset
??3@YAXPAX@Z

kernel32

GetPrivateProfileStringA
OutputDebugStringA
GetModuleFileNameA
WaitForSingleObject
Sleep
GetFileSize
ExitProcess
GetModuleHandleA
VirtualProtect
GlobalAlloc
GlobalLock
CreateFileA
WriteFile
GlobalUnlock
GlobalFree
GetSystemDirectoryA
LoadLibraryA
CloseHandle
CreateThread
WideCharToMultiByte
MultiByteToWideChar
GetTempPathA
GetCommandLineA
WritePrivateProfileStringA
GetProcAddress

user32

GetClientRect
GetDC
wsprintfA
GetClassNameA
GetWindowTextA
ReleaseDC
GetWindowRect
GetDesktopWindow
EnumWindows

ws2_32

recv
socket
send
htons
connect
inet_ntoa
closesocket
WSAStartup
gethostbyname
inet_addr
WSACleanup

gdi32

SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteObject
BitBlt
GetDIBits
RealizePalette
SelectPalette
GetStockObject
GetObjectA
DeleteDC
GetDeviceCaps
CreateDCA

gdiplus

GdipCloneImage
GdipDisposeImage
GdipSaveImageToFile
GdipAlloc
GdipFree
GdipGetImageEncoders
GdiplusStartup
GdipLoadImageFromFile
GdipGetImageEncodersSize

urlmon

URLDownloadToFileA

wininet

InternetCloseHandle
HttpQueryInfoA
InternetOpenUrlA
InternetOpenA
InternetReadFile

Exports

Exports

DriverProc
modMessage
modmCallback

Sections

.data
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42441f5a20e5f5a87ab5a5e730ac748f

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

ws2_32

gdi32

gdiplus

urlmon

wininet

Exports

Exports

Sections

.data Size: 18KB - Virtual size: 18KB

.reloc Size: 1KB - Virtual size: 1KB

.data
Size: 18KB - Virtual size: 18KB

.reloc
Size: 1KB - Virtual size: 1KB