c860cd97a8312eadc9a3f2d9b63e5e8f2b06fa1c87063823eb18e883298828c5

Sharing

Copy URL

Twitter E-mail

General

Target

c860cd97a8312eadc9a3f2d9b63e5e8f2b06fa1c87063823eb18e883298828c5
Size

163KB
MD5

f9b53f0209ea15c878e8dbee37a2a289
SHA1

387f94ca6e9574508db9145c6ba436b318f6fd87
SHA256

c860cd97a8312eadc9a3f2d9b63e5e8f2b06fa1c87063823eb18e883298828c5
SHA512

3810cf373a1c0522a3a52dd851f027c1db0288ff5efbb4a1702b8f4301523e92615f902c66f87887c31c8cf11fd972b7559a86533b5eb6be12ea1c31467b6cb5
SSDEEP

3072:MHVEk9YaXoLoZL1Zl4+OElbPdp/QSVH1Y6:M1jWaXo8YdExXVH15

Score

N/A

Malware Config

Signatures

Files

c860cd97a8312eadc9a3f2d9b63e5e8f2b06fa1c87063823eb18e883298828c5
.dll windows x86

f875bfc35173c81cb093a7f5c3b0c104

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DisableThreadLibraryCalls
LockResource
LoadResource
FindResourceW
FormatMessageW
GetTempFileNameW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetTickCount
WideCharToMultiByte
lstrlenA
GlobalLock
GlobalUnlock
LocalFree
LocalAlloc
OutputDebugStringA
GetCurrentThreadId
LeaveCriticalSection
GlobalAlloc
MultiByteToWideChar
GlobalFree
DeleteFileW
GetVersion
VirtualProtect
GetCommandLineA
MoveFileW

user32

RegisterClassW
CreateWindowExW
CharNextW
LoadStringW
DispatchMessageW
RegisterClipboardFormatW
GetMessageW
TranslateMessage
GetClipboardFormatNameW
SetFocus
SetWindowLongW
DestroyWindow
IsWindow
LoadCursorW

advapi32

RegQueryValueW
RegEnumValueW
RegEnumKeyW
RegCloseKey
RegOpenKeyW

gdi32

GetStockObject

ole32

ReleaseStgMedium
StringFromGUID2
OleCreateDefaultHandler
StgCreateDocfile
StgOpenStorage
OleLoad
OleRun
StgIsStorageFile
OleUninitialize
OleInitialize

msvcrt

_except_handler3
_initterm
_CxxThrowException
_finite
strncmp
wcschr
memset
_errno
isdigit
mbtowc
__mb_cur_max
isleadbyte
isxdigit
localeconv
wctomb
iswctype
wcstombs
realloc
__badioinfo
__pioinfo
_read
_fileno
free
malloc
localtime
time
_adjust_fdiv

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f875bfc35173c81cb093a7f5c3b0c104

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcrt

Sections

.text Size: 155KB - Virtual size: 155KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 33KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 155KB - Virtual size: 155KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 33KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB