e2dbe8a23d0df2e1e919f03fd8cd61c13efbbed95b5890fd84e51e61c9ed3b38

Sharing

Copy URL Twitter E-mail

General

Target

e2dbe8a23d0df2e1e919f03fd8cd61c13efbbed95b5890fd84e51e61c9ed3b38
Size

61KB
MD5

285c60971832538d3811d1782bd5c5c2
SHA1

c97bd205c8cdb9d6791e02c5e90d827803447203
SHA256

e2dbe8a23d0df2e1e919f03fd8cd61c13efbbed95b5890fd84e51e61c9ed3b38
SHA512

10eb8c4f7fc28b4661b0c7c8caa13f3b9863cf926e78a798b9e01be80216d4c9082fa06ae9028d88497dca3b6bf92bc80c5f34cefb05de4d684105ab74201be9
SSDEEP

1536:TGVvnXdIdgvmtKm6irCQnWHm0+5NLfMmb0nJqyTpe+xnLE:qvmgvmzV4GX5x3YJqyTp5L

Score

N/A

Malware Config

Signatures

Files

e2dbe8a23d0df2e1e919f03fd8cd61c13efbbed95b5890fd84e51e61c9ed3b38
.dll windows x86

c6bac02effc39f4180893072e4e6eed0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
CreateThread
FreeResource
CreateFileMappingA
lstrlenW
TerminateProcess
MapViewOfFile
WaitForMultipleObjects
MultiByteToWideChar
CloseHandle
GetCPInfo
GetComputerNameA
GetFileSize
FreeLibrary
GetLastError
GetCurrentThread
FlushInstructionCache
TerminateThread
GetModuleHandleA
GlobalFree
GetTempPathA
CopyFileA
WideCharToMultiByte
UnmapViewOfFile
GlobalFindAtomA
FindResourceA
GlobalAddAtomA
VirtualFree
CompareStringA
VirtualQuery
IsValidLocale

imm32

ImmSetCompositionFontA
ImmGetContext
ImmReleaseContext

user32

GetClassInfoW
UnhookWindowsHookEx
CharUpperBuffW
GetCaretPos
ValidateRect
EndDeferWindowPos
MapVirtualKeyA
MessageBeep
RegisterWindowMessageA
GetSystemMetrics
EnableWindow
DrawTextW
DrawCaption
EnumThreadWindows
CopyImage
InsertMenuA
SetScrollRange
GetMenuItemID
GetParent
ReuseDDElParam
GetActiveWindow
GetMenu
DrawEdge
FillRect
SetPropA
DefFrameProcA
IsChild
CreateWindowExW
GetDesktopWindow
EmptyClipboard
GetTopWindow
LoadIconA
SendDlgItemMessageA
IsWindowVisible
UpdateWindow
SetMenu
GetWindowTextLengthA
GetClassNameW
GetMenuState
PostThreadMessageA
IntersectRect
CallWindowProcW
EnableScrollBar
BringWindowToTop
GetSysColor
GetIconInfo
IsZoomed
DefWindowProcA
DestroyCursor
SystemParametersInfoA

comctl32

ImageList_DragLeave
ImageList_Read
ImageList_GetIcon
ImageList_Remove

ole32

OleGetClipboard
StringFromCLSID

urlmon

CoInternetCreateSecurityManager

gdi32

BitBlt
CreateRectRgn
IntersectClipRect
GetObjectA
RectVisible
GetBkColor
GetCharWidthA
StretchDIBits
CreateBitmap
GetDIBColorTable
ExtTextOutA

hlinsrad

_LCosh
_FSnan
_Dtest
_FCosh
_FEps
_FDenorm
_LDtest
_LNan

oleaut32

SafeArrayCreateVector

wininet

InternetAttemptConnect
InternetErrorDlg

version

GetFileVersionInfoSizeA

winmm

timeBeginPeriod

shell32

SHGetPathFromIDListA
ShellExecuteExA

comdlg32

FindTextA

Exports

Exports

CreateProcessNotify
AllocADsMem
DllClientCleanup
blasrint
FindEntryInSearchTable
DllClientStartup
BuildADsParentPathFromObjectInfo
AdsTypeToLdapTypeCopyGeneralizedTime

Sections

.text
Size: 42KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c6bac02effc39f4180893072e4e6eed0

Headers

File Characteristics

Imports

kernel32

imm32

user32

comctl32

ole32

urlmon

gdi32

hlinsrad

oleaut32

wininet

version

winmm

shell32

comdlg32

Exports

Exports

Sections

.text Size: 42KB - Virtual size: 44KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 42KB - Virtual size: 44KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB