ad4a59ba5b2742d975dad503485bcd40fff54be5c804292eeefb02886b592263

General

Target

ad4a59ba5b2742d975dad503485bcd40fff54be5c804292eeefb02886b592263
Size

352KB
MD5

210af50144f37f46233241d12f9b65b0
SHA1

d3465fbab03992a50100d6ed19e3497383e39bc3
SHA256

ad4a59ba5b2742d975dad503485bcd40fff54be5c804292eeefb02886b592263
SHA512

7a7401c8c49f88ba5d2901f29eb9e39f0426364651bbb2a722a9e7003597a4d7ef35589e2bd4f7b4846b44af6a97cdd87dfdaa42dd0123f97f8d3ab6fc23bfb3
SSDEEP

6144:QRcuFu6ddcnP9sp1bN+TLld6yBGcdDJimPPnCnjQffXI0lp8:QRc5Udcn1sp1bNwLeyIc7mjifXI0

Score

N/A

Malware Config

Signatures

Files

ad4a59ba5b2742d975dad503485bcd40fff54be5c804292eeefb02886b592263
.dll windows x86

bf76c413cc094ab5caeadbf155b320d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InitializeCriticalSection
GetStartupInfoA
CreateFileA
VirtualAlloc
Sleep
TlsGetValue
DeleteCriticalSection
GlobalAlloc
GetDateFormatA
TlsFree
LeaveCriticalSection
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
GetTickCount
TlsSetValue
GlobalFree
QueryPerformanceCounter
VirtualFree
LoadLibraryA
SetLastError
FreeLibrary
EnterCriticalSection
GetLastError
GetCurrentThreadId
GlobalSize
TlsAlloc
SetThreadPriority
IsBadReadPtr

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

msvcrt

fprintf
exit
strcmp
_iob
free
memset
fgets
fclose
malloc
fseek
strtok
memcpy
_ftol
calloc
abort
fwrite
atol
strstr
strncmp
rand
getenv
strcpy
sprintf
_assert
realloc
memmove
atoi
ftell
sscanf
bsearch
fopen
_stricmp
_CIpow
fread

user32

WindowFromDC
GetDC
MessageBoxA
GetWindowThreadProcessId
GetParent
GetWindowRect
ReleaseDC
wsprintfA

Exports

Exports

InPlaceOr
State_New
WriteString
_Fini
set_tRNS_to_alpha

Sections

.text
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bf76c413cc094ab5caeadbf155b320d4

Headers

File Characteristics

Imports

kernel32

advapi32

msvcrt

user32

Exports

Exports

Sections

.text Size: 96KB - Virtual size: 94KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 92KB - Virtual size: 92KB

.rsrc Size: 76KB - Virtual size: 75KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 96KB - Virtual size: 94KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 76KB - Virtual size: 75KB

.reloc
Size: 8KB - Virtual size: 7KB