c81eb789fbb7fbe7cd41a8642b616d0e33b256b631f19c1208d9db5ac3516c8e

Sharing

Copy URL Twitter E-mail

General

Target

c81eb789fbb7fbe7cd41a8642b616d0e33b256b631f19c1208d9db5ac3516c8e
Size

381KB
MD5

a41826fd865b2c31b8a67b2469c1f870
SHA1

30bc98b1c7c36aa2349f1bd764a970c4bfba4791
SHA256

c81eb789fbb7fbe7cd41a8642b616d0e33b256b631f19c1208d9db5ac3516c8e
SHA512

f2f530e24d96d88ec77562764db1841ee7f7aaee49741110ed68db05de6dcd8c27d5b3b9106dcc93c0d2e48cb9bddb25b6e9ebb34a2b8b0efbfc8dfdc60a224a
SSDEEP

6144:+o6Yx3uOXG5kegjRvC2YWFdPUKd97kM8//WxESZr45vLtjBirJqJ9sgBJ0Qi:t6Yx36gjdC2BFdP9d9U/+yZBitqJ9sgE

Score

N/A

Malware Config

Signatures

Files

c81eb789fbb7fbe7cd41a8642b616d0e33b256b631f19c1208d9db5ac3516c8e
.dll windows x86

a96064ce796e00399fd762280ce8bd40

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

dinput

DirectInputCreateA

kernel32

GetModuleFileNameW
GetModuleHandleA
GetNamedPipeInfo
GetProcAddress
GetProcessPriorityBoost
GetProcessVersion
GetStartupInfoA
GetStdHandle
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetTickCount
GetUserDefaultLCID
GetUserDefaultLangID
GetVersionExA
GlobalAddAtomW
GlobalAlloc
GlobalFindAtomW
GlobalLock
GlobalReAlloc
GlobalUnlock
HeapAlloc
HeapCompact
HeapFree
HeapReAlloc
HeapValidate
InitializeCriticalSection
InterlockedIncrement
IsBadReadPtr
GetMailslotInfo
LoadResource
LocalAlloc
LocalFree
Module32Next
MultiByteToWideChar
OpenProcess
Process32FirstW
Process32NextW
QueryPerformanceCounter
RaiseException
ReadDirectoryChangesW
RtlZeroMemory
SetErrorMode
SetEvent
SetFilePointer
TerminateJobObject
Thread32Next
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualQueryEx
VirtualUnlock
WideCharToMultiByte
WriteFile
WriteFileEx
_lread
lstrcatW
lstrcpynW
lstrlenW
GetLastError
GetFileAttributesW
GetExitCodeThread
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStringsA
GetDevicePowerState
GetCurrentThreadId
GetCurrentProcessId
GetCurrentConsoleFont
GetConsoleWindow
GetCommandLineA
GetCPInfo
GetACP
FreeEnvironmentStringsA
FlushConsoleInputBuffer
EnterCriticalSection
CreateToolhelp32Snapshot
CreateConsoleScreenBuffer
ConnectNamedPipe
BindIoCompletionCallback
BackupRead
AllocateUserPhysicalPages
AllocConsole
LoadLibraryA

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

gdi32

SetRectRgn
SetMapperFlags
SetMapMode
SelectObject
SelectBrushLocal
ScaleWindowExtEx
ScaleViewportExtEx
RestoreDC
PolyBezierTo
OffsetViewportOrgEx
GetStockObject
GetDeviceCaps
GetBkColor
ExcludeClipRect
DeleteDC
CreateSolidBrush
CreateHatchBrush
ColorCorrectPalette
CloseMetaFile
AnimatePalette
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetSystemPaletteUse

user32

GetMenuItemCount
WaitMessage
UnregisterClassW
UnhookWindowsHookEx
AdjustWindowRectEx
CallWindowProcW
CheckMenuItem
ClientToScreen
CloseDesktop
CopyRect
CreatePopupMenu
DispatchMessageW
DrawIconEx
DrawTextW
EnableMenuItem
EnableWindow
EndDeferWindowPos
ExcludeUpdateRgn
FrameRect
GetCapture
GetCaretPos
GetClassInfoW
GetDC
GetDlgItem
GetKeyState
GetKeyboardLayoutList
GetLastActivePopup
GetMenu
GetMenuCheckMarkDimensions
GetMenuState
GetNextDlgTabItem
GetSubMenu
GetSysColorBrush
GetTopWindow
GetWindowLongW
GetWindowRect
GetWindowTextW
IsIconic
LoadCursorW
LookupIconIdFromDirectory
PeekMessageW
PostMessageW
ReleaseCapture
ReleaseDC
ScrollWindowEx
SendMessageW
SetFocus
SetPropW
SetRect
SetWindowLongW
ShowWindow
TabbedTextOutW
ToAscii

Exports

Exports

Free
FromReadWriteObject
List_New
Mem_Realloc

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 73KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a96064ce796e00399fd762280ce8bd40

Headers

File Characteristics

Imports

comctl32

dinput

kernel32

winspool.drv

gdi32

user32

Exports

Exports

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 196KB - Virtual size: 195KB

.data Size: 73KB - Virtual size: 74KB

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 196KB - Virtual size: 195KB

.data
Size: 73KB - Virtual size: 74KB

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 5KB - Virtual size: 4KB