a4efe1bec61f0a23ebf3788698ef49b2a493f35595edf1d2737f4f63e880b9ca

Sharing

Copy URL Twitter E-mail

General

Target

a4efe1bec61f0a23ebf3788698ef49b2a493f35595edf1d2737f4f63e880b9ca
Size

116KB
MD5

c720b46251bc1591d73c9406c5be0070
SHA1

2ecbe88ffc1c26fc18aae60be32b82d0da41c817
SHA256

a4efe1bec61f0a23ebf3788698ef49b2a493f35595edf1d2737f4f63e880b9ca
SHA512

6d5e65ee97bc6d02d1dc1052ada2e87cd184ae5c0d5a86eb2248f1e35eee3ff1cdae73145f5af7205ef700544b2819bc0bef7627728b9db506e6eed19edf8861
SSDEEP

3072:K37KoIdotZIl07CIz382nK/A6cDGqHg9U+7bIpS+pM:K37KorE0mt2nsAPJgGvp5W

Score

N/A

Malware Config

Signatures

Files

a4efe1bec61f0a23ebf3788698ef49b2a493f35595edf1d2737f4f63e880b9ca
.dll windows x86

5ef73fc16f30cd2f614c058479ff8917

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetHandleInformation
VirtualAlloc
GetVersion
IsValidLocale
SetThreadAffinityMask
SetConsoleCP
SetComputerNameA
GetConsoleInputExeNameA
PeekNamedPipe
GetEnvironmentStringsW
FindFirstFileW
DeleteCriticalSection
SetFileAttributesW
SetConsoleCursorPosition
FindNextVolumeA
GlobalHandle
GetConsoleScreenBufferInfo
SetCurrentDirectoryW
ExitThread
RequestWakeupLatency
EnumDateFormatsExA
LoadLibraryA
GetCPInfo
GetCPInfoExW
SetThreadPriority
WriteConsoleInputW
CreateFileW
GetCPInfoExA
GetProfileStringA
FreeLibrary
GetCommProperties
GetThreadSelectorEntry
HeapSummary
GetSystemTime
SetCommConfig
GetDateFormatW
GetNumberOfConsoleInputEvents
VerLanguageNameA
GetTickCount
GetDriveTypeA
WriteConsoleInputVDMA
HeapDestroy
AssignProcessToJobObject
GetQueuedCompletionStatus
PeekConsoleInputW
GetModuleHandleA
ReplaceFile
GetConsoleFontSize
GetStringTypeExW
GetLocalTime
FindClose
GetProcAddress
SetEvent
FindFirstFileExW
UTRegister
AddAtomW
WaitForMultipleObjects
GlobalAddAtomW
GetCommState
EnumResourceNamesA
GetNextVDMCommand
GetSystemDefaultLCID
DeleteVolumeMountPointW
HeapReAlloc
ReadConsoleOutputA
LoadLibraryExW
QueryDosDeviceA
CreateWaitableTimerA
SetTimeZoneInformation
UpdateResourceW
GetComputerNameA

user32

CharLowerBuffW
RegisterClipboardFormatW
DialogBoxParamW
IsWindowVisible
GetKeyNameTextA
GetClipCursor
GetThreadDesktop
GetAltTabInfoW
DdeQueryNextServer
AdjustWindowRect
IsCharUpperA
GetPropA
DrawMenuBar
GetSystemMetrics
SetScrollInfo
IMPGetIMEA
GetUserObjectInformationA
EnumWindows
GetKeyNameTextW
InvertRect
VkKeyScanExA
GetProcessWindowStation
EnumDisplaySettingsExA
PeekMessageW
GetFocus
GetCursorInfo
CharToOemW
GetMenuBarInfo
ScrollChildren
CharPrevA
SetClassWord
AnyPopup
LoadCursorFromFileW
EnumPropsA
MsgWaitForMultipleObjects
PackDDElParam
GetClassLongA
SetWinEventHook
DestroyWindow
IMPSetIMEW
GetPriorityClipboardFormat
SetDeskWallpaper
EnumClipboardFormats
SetPropW
DdeUninitialize

shell32

DragAcceptFiles
SHFileOperationA
ShellAboutW
ExtractIconExA
SHGetDesktopFolder
SHGetSpecialFolderPathW
SHGetSpecialFolderLocation
SHLoadInProc
InternalExtractIconListA
StrChrA
StrNCmpA
SHAddToRecentDocs
SHQueryRecycleBinA
SHGetPathFromIDListW
DragQueryPoint
WOWShellExecute
SHGetDiskFreeSpaceA
StrChrIW
SHChangeNotify
SHFreeNameMappings
ord180
SheChangeDirA
RegenerateUserEnvironment
StrRStrA
StrCmpNIW
DoEnvironmentSubstW
ExtractIconW
StrChrIA
SHFormatDrive
FreeIconList
CommandLineToArgvW
SHGetMalloc
StrRStrIW
SHGetFileInfoA
SHUpdateRecycleBinIcon
SHGetDataFromIDListA
SHEmptyRecycleBinA
SHGetSpecialFolderPathA

msvcrt

_mbsupr
_mbsdec
_mbsnbcmp
_mbsicmp
_mbsset
_mbsnbcoll
_rotr
fwprintf
_strcmpi
fread
_outp
_sys_errlist
_ftol
getwc
_mbctolower
_exit
_mbsnbicmp
log10
malloc
_wtmpnam
_ultow
abs
feof
__p___argc
memset
__CxxFrameHandler
fputc
fwrite
_ltoa
__lc_codepage
isupper
_copysign
__setlc_active
fputs
wcscspn
_set_sbh_threshold
_mbscat
wcsncmp
free
fopen
ctime
_wcsncoll
ferror
__p__environ
sprintf
_chmod
localtime
_wfindfirst
fclose
_CIsinh
printf
ftell
_fcvt
_unlink
fsetpos
_wfindfirsti64
_fpclass
wcstod
wcstombs
putc
_i64toa
_execlpe
_atodbl
strlen
__CxxLongjmpUnwind
fprintf
_getdiskfree
atexit
_setjmp
atan
getenv
__pxcptinfoptrs
_spawnvp
fseek
_getsystime
isspace
_mbspbrk

Exports

Exports

Eaoojiawp
Hipnyabrp
Hphjl
Iuymue
Lmqeeduwri
Mjewpzkic
Oehirg
Oynivac
Pgbhpvlez
Qystk
Ylzi

Sections

.text
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ef73fc16f30cd2f614c058479ff8917

Headers

File Characteristics

Imports

kernel32

user32

shell32

msvcrt

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 42KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 52KB - Virtual size: 49KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 44KB - Virtual size: 42KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 52KB - Virtual size: 49KB

.reloc
Size: 8KB - Virtual size: 5KB