a86ff3c65d24a9eb57d60341497e1616cb8bc7031bab6b011bd66fb6c20d95dd

Sharing

Copy URL Twitter E-mail

General

Target

a86ff3c65d24a9eb57d60341497e1616cb8bc7031bab6b011bd66fb6c20d95dd
Size

100KB
MD5

377e8340f72cdcad8992ceb2cca53356
SHA1

4a0e1863d22ac81993885d0f546b9bab69e0ad32
SHA256

a86ff3c65d24a9eb57d60341497e1616cb8bc7031bab6b011bd66fb6c20d95dd
SHA512

0488cfd854549e358cdab98a87027ae771114acef170f9bc5193d1c11ed150ec1d963911250060285b25f4ec0b6a6e013ff6031d15fd9f5a150de77a240cab1e
SSDEEP

1536:gqmPbebscKKUSL14vLrMOu1s8InsALxrmemXUkZd+w6Rm9TkpFdyLpx1qa:DM6eKUX5u1WnsA1uFd+tR7up7L

Score

N/A

Malware Config

Signatures

Files

a86ff3c65d24a9eb57d60341497e1616cb8bc7031bab6b011bd66fb6c20d95dd
.dll windows x86

8b9f55a0ffba64c3008b8fe5e909c372

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
LoadLibraryA
GetProcAddress
lstrlenA
lstrcpyA
FreeLibrary
lstrlenW
FindClose
EnterCriticalSection
HeapFree
LocalAlloc
LocalFree
CreateThread
MulDiv
GetModuleHandleW
GetCommandLineW
GetStartupInfoW
GetSystemPowerStatus
GetVersionExW
HeapAlloc
GetProcessHeap
FindNextFileW
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
MoveFileW
GetCurrentThread
GetFileSize
FindFirstFileExW
CreateFileW
GetSystemDirectoryW
LoadLibraryW
GetCurrentProcess
SetLastError
InterlockedExchange
Sleep
InterlockedCompareExchange
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
CreateEventW
WaitForSingleObject
SetEvent
GetLastError
ExitProcess
GetVersion
GetCommandLineA
VirtualProtect
LeaveCriticalSection
GetTickCount

user32

CharNextW
InvalidateRect
SetTimer
RegisterClassW
LoadImageW
FillRect
SetRect
ValidateRect
SystemParametersInfoW
SetCursor
GetCursorPos
PostQuitMessage
GetParent
DialogBoxParamW
GetForegroundWindow
DispatchMessageW
TranslateMessage
GetMessageW
RegisterWindowMessageW
ReleaseDC
GetDC
LoadIconW
GetWindowRect
PostMessageW
CreateWindowExW
DefWindowProcW
LoadStringW
SendMessageW
SetWindowPos
IsWindowVisible
ShowWindow
BeginPaint
EndPaint
DestroyWindow
SetForegroundWindow
GetSystemMetrics
ScreenToClient
SetRectEmpty
GetClientRect
GetWindowLongW
AdjustWindowRect
IsWindow
IsIconic
FindWindowW

advapi32

PrivilegeCheck
RegDeleteValueA
SetServiceStatus
StartServiceCtrlDispatcherW
OpenThreadToken
OpenProcessToken
GetTokenInformation
FreeSid
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
EqualSid
AllocateAndInitializeSid
RegQueryValueExW
RegOpenKeyExW
LookupPrivilegeValueA

gdi32

GetClipBox
GetStockObject
DeleteDC
CreateCompatibleDC
GetObjectW
SelectObject
SetStretchBltMode
BitBlt
CreatePalette
DeleteObject
StretchDIBits
RealizePalette
SelectPalette

ole32

CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance

msvcrt

__CxxFrameHandler
_except_handler3
_amsg_exit
_initterm
exit
_XcptFilter
_cexit
free
_vsnwprintf
rand
srand
time
memset
malloc
_adjust_fdiv

Sections

.text
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b9f55a0ffba64c3008b8fe5e909c372

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

ole32

msvcrt

Sections

.text Size: 56KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 34KB - Virtual size: 66KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 56KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 34KB - Virtual size: 66KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 3KB - Virtual size: 2KB