b8975f5dd28a4891af7f2d39e5be6c5c1cc33fb07802829077027cc866fb5084

General

Target

b8975f5dd28a4891af7f2d39e5be6c5c1cc33fb07802829077027cc866fb5084
Size

49KB
MD5

5853eb5726f7be8218ffbe6b05c2fe7c
SHA1

3e03ae8cc7adcea3aa5c64e8546aac2ce302573e
SHA256

b8975f5dd28a4891af7f2d39e5be6c5c1cc33fb07802829077027cc866fb5084
SHA512

cfe8ba893c3db27e39d901c3de3741300915ff4be78f85cc294eaaf4f4720bcf5ca2a8dbfded14ec9be073447d505cf2988d24bb91373da4685c9a1472204757
SSDEEP

1536:WevrLTATzcQ+sgfNV0OnD7T1k9nKOBG/9DElBxF2j:x3TMc04NV0OBYxUwlBx4

Score

N/A

Malware Config

Signatures

Files

b8975f5dd28a4891af7f2d39e5be6c5c1cc33fb07802829077027cc866fb5084
.dll windows x86

25ceb1d6b5f597e6b06523a20b21296a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

adsnhk32

SdbQueryData
SdbTagRefToTagID
ImmCallImeConsoleIME
ILFindChild
SdbGetMsiPackageInformation
ImmGetStatusWindowPos
SdbGrabMatchingInfo
ImmFreeLayout
InternalExtractIconListA
DragQueryPoint
SdbOpenDatabase
ILFree
SdbUnregisterDatabase
DAD_ShowDragImage
ImmEscapeA
ImmUnlockIMCC
ILGetNext
ImmSetCompositionStringA
ImmGetCandidateListA
ImmSetCompositionFontA
ImmIMPSetIMEA
SdbGetNextChild
ImmSetOpenStatus
ImmReleaseContext
SdbQueryApphelpInformation
CtfImmDispatchDefImeMessage
CheckEscapesA
DragQueryFileA
SdbReadWORDTagRef
Control_FillCache_RunDLLA

kernel32

SetThreadPriority
CreateFileA
GetThreadSelectorEntry
VirtualQueryEx
GetFirmwareEnvironmentVariableA
OpenThread
WriteFileGather
LocalAlloc
WaitForMultipleObjects
ReadFile
MapViewOfFile
CreateFileMappingA
GetFileAttributesA
SetThreadExecutionState
GetThreadLocale
GetThreadTimes
GetModuleHandleA
UnmapViewOfFile
GetFileTime
GetThreadIOPendingFlag
GetProcessHeaps
SetFilePointer
SleepEx

Exports

Exports

CreateProcessNotify
drviator

Sections

.text
Size: 36KB - Virtual size: 40KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25ceb1d6b5f597e6b06523a20b21296a

Headers

File Characteristics

Imports

adsnhk32

kernel32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 40KB

.rdata Size: 2KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 40KB

.rdata
Size: 2KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB