aaeff8299e6f69e9139fbb1dc5fb2aa16a3f87a50f30a777f6353b4bba7dfe4f

General

Target

aaeff8299e6f69e9139fbb1dc5fb2aa16a3f87a50f30a777f6353b4bba7dfe4f
Size

608KB
MD5

db97476540efabad98b7513dcd05d580
SHA1

d0635ea2da2ac825b0e01d2d427617aad39580c1
SHA256

aaeff8299e6f69e9139fbb1dc5fb2aa16a3f87a50f30a777f6353b4bba7dfe4f
SHA512

c67cd04cf392a732b54c9afaeef6a4a8fb53de2c155605db573c9e90c13db48721fe7d7e8d12a1ccfad1a87f4dac03f7c1a05c94996d3f20fa8eeef857df381e
SSDEEP

12288:fFhKyRtu5InCNqQGhYc3bR6s94dW2Zn91l:X457NHdcd6bJn9v

Score

N/A

Malware Config

Signatures

Files

aaeff8299e6f69e9139fbb1dc5fb2aa16a3f87a50f30a777f6353b4bba7dfe4f
.dll windows x86

0fed3bb1e605529b81dee71684d15508

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC
GetParent
ReleaseDC
WindowFromDC
GetWindowThreadProcessId
wsprintfA
GetWindowRect

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

kernel32

LeaveCriticalSection
GetProcAddress
FreeLibrary
GetDateFormatA
GetModuleFileNameA
TlsGetValue
TlsFree
GetModuleHandleA
SetThreadPriority
Sleep
GlobalAlloc
DeleteCriticalSection
IsBadReadPtr
GetVersionExA
LoadLibraryA
VirtualAlloc
CreateFileA
GetStartupInfoA
GetTickCount
GetLastError
TlsSetValue
SetLastError
GlobalFree
GlobalSize
TlsAlloc
VirtualFree
QueryPerformanceCounter
EnterCriticalSection
InitializeCriticalSection
GetCurrentThreadId

msvcrt

strncmp
sqrt
bsearch
_ftol
memcpy
free
fclose
ftell
realloc
rand
fgets
strcpy
fseek
memmove
atol
_stricmp
fopen
strtok
_CIpow
fprintf
strcmp
exit
_iob
_assert
abort
atoi
memset
getenv
sscanf
strstr
fread
malloc
sprintf
fwrite

Exports

Exports

FromCComplex
FromObjectParam
get_sBIT
get_signature
set_bKGD

Sections

.text
Size: 192KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 209KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fed3bb1e605529b81dee71684d15508

Headers

File Characteristics

Imports

user32

advapi32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 192KB - Virtual size: 190KB

.rdata Size: 80KB - Virtual size: 78KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 212KB - Virtual size: 209KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 192KB - Virtual size: 190KB

.rdata
Size: 80KB - Virtual size: 78KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 212KB - Virtual size: 209KB

.reloc
Size: 8KB - Virtual size: 7KB