b6ca0e7fcfa6ab3aa5e7e0c9faff0efa43e20753cd49a90cc6919ec971dd3c6a

Sharing

Copy URL Twitter E-mail

General

Target

b6ca0e7fcfa6ab3aa5e7e0c9faff0efa43e20753cd49a90cc6919ec971dd3c6a
Size

60KB
MD5

354ed6b1ef5722c6b538cb51cbe64e63
SHA1

2066deebf5054e61bc775d3c402d4b396e42f084
SHA256

b6ca0e7fcfa6ab3aa5e7e0c9faff0efa43e20753cd49a90cc6919ec971dd3c6a
SHA512

6e2c577f8b15b1c655f7adc8fe24cf4b71f1cdaa1efdd4e70e5cbddc556f1c1797bf7e260efa853baa6dbc8a59ff5de115a8f1eb0dbec4b7512ffc8ced7c33e4
SSDEEP

1536:KvaPE42+ly4jQV1DbR7j3iTNrdgy4nM0rVr0SdwtaE:+J+HjQvdiTl6y4MeV4SdT

Score

N/A

Malware Config

Signatures

Files

b6ca0e7fcfa6ab3aa5e7e0c9faff0efa43e20753cd49a90cc6919ec971dd3c6a
.dll windows x86

b029ee52e5fc700cc3aa2252a9c99fd1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetFocus
DestroyIcon
LoadCursorA
CheckDlgButton
wvsprintfA
IsIconic
MessageBeep
SendDlgItemMessageA
CallWindowProcA
SetForegroundWindow
IsWindowEnabled
SetDlgItemTextA
AppendMenuA
SetClassLongA
CloseClipboard
SetMenuItemInfoA
SetTimer
CharUpperA
ScreenToClient
SetWindowPos
CheckRadioButton
EndDialog
EnableMenuItem
CharLowerA
CreatePopupMenu
EnumClipboardFormats
EnableWindow
CheckMenuRadioItem
GetDlgItemTextA
GetClassInfoA

kernel32

lstrlenA
VirtualUnlock
WideCharToMultiByte
WriteFile
GlobalLock
lstrcmpiA
WritePrivateProfileStructA
ReadProcessMemory
lstrlenW
GlobalAlloc
TerminateProcess
OpenProcess
lstrcpyA
WaitForMultipleObjects
WaitForSingleObject
CopyFileA
CreateFileMappingA
GetModuleFileNameA
VirtualAlloc
UnmapViewOfFile
CreateProcessA
GetCommandLineA
SetFilePointer
ResumeThread
LoadLibraryA
VirtualQuery
GetCurrentThread
VirtualProtectEx
VirtualFree
CloseHandle
GetPrivateProfileStructA
MapViewOfFile
OutputDebugStringA
lstrcpynA
GetFileAttributesA
GlobalUnlock
GetModuleHandleA
ReadFile
CreateFileA
FindNextFileA
FindClose
VirtualLock
FindFirstFileA
WriteProcessMemory
GetProcAddress
GetCurrentProcessId
IsProcessorFeaturePresent

msvcrt

toupper
asctime
malloc
_except_handler3
strchr
_timezone
mktime
strstr
free
div

d3d80_32

_Tolower
_FSinh
_Poly
_Inf
_FDnorm
_FDtest
_Snan
_Dtest
_Getcoll
_LSinh
_Dnorm
_FXbig
_FDscale
_Stod
_Wcrtomb
_Exp
_Strcoll
_FRteps
_LRteps
_LSnan
_Mbrtowc
_Rteps
_Xbig
_Stold
_FCosh
_Denorm

comctl32

ImageList_Remove
ImageList_ReplaceIcon

comdlg32

GetSaveFileNameA
GetOpenFileNameA

imagehlp

ImageRvaToSection
ImageRvaToVa
BindImageEx

shell32

ShellExecuteA
DragQueryFileA
SHGetFileInfoA
DragAcceptFiles

advapi32

AdjustTokenPrivileges
OpenProcessToken

gdi32

SetBkMode
GetDeviceCaps
DeleteObject
SelectObject
SetTextColor

Exports

Exports

CreateProcessNotify
Compkrnl

Sections

.text
Size: 50KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b029ee52e5fc700cc3aa2252a9c99fd1

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

d3d80_32

comctl32

comdlg32

imagehlp

shell32

advapi32

gdi32

Exports

Exports

Sections

.text Size: 50KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 3KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 50KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB