68cc924d726c04977a660ce239bf1983ce46f808d517f9e6051692cdebf238bb

General

Target

68cc924d726c04977a660ce239bf1983ce46f808d517f9e6051692cdebf238bb
Size

592KB
MD5

3d04ad86acef477b03fff4f9b13276e0
SHA1

474cf97fdc11c8dd167abdefef73e157a9abc378
SHA256

68cc924d726c04977a660ce239bf1983ce46f808d517f9e6051692cdebf238bb
SHA512

1de30bd9e79f67282fbd21cd84b3123b53882c71a5dd1ca173a011242d5f42d6b5613ee616a5929ed940a8342cd51fed59a76ee8b45e114f1795bfc81429d8e1
SSDEEP

12288:5cvDZxud3s7BLU0R+74SzeUX+ZlzzBtEUZM9B5QK1e6y:5uxuS7BpR+ES1kBq9fQ/

Score

N/A

Malware Config

Signatures

Files

68cc924d726c04977a660ce239bf1983ce46f808d517f9e6051692cdebf238bb
.dll windows x86

bce968462cf93ed7a9b341475aa1e3ad

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
MessageBoxA
wsprintfA
UnhookWindowsHookEx
GetClientRect
GetWindowRect
GetDesktopWindow
ReleaseDC
GetProcessDefaultLayout
FillRect
GetDC
GetWindowThreadProcessId
WindowFromDC
DestroyWindow
GetParent

msvcrt

_assert
strtok
fseek
sprintf
_CIpow
fprintf
printf
strcmp
rand
free
fgets
strcpy
realloc
calloc
memcmp
fread
ungetc
_ftol
atof
fopen
exit
memset
abort
memmove
sqrt
_stricmp
sscanf
atoi
strstr
bsearch
memcpy
_iob
ftell
fclose
atol
fwrite
strncmp
malloc
getenv

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

kernel32

TlsGetValue
EnterCriticalSection
SetThreadPriority
InitializeCriticalSection
GetFileSize
GetProcAddress
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
FreeLibrary
GetTickCount
CreateFileA
GetStartupInfoA
WriteFile
GlobalSize
GetDateFormatA
VirtualFree
LoadLibraryA
GlobalFree
GetModuleFileNameA
GlobalAlloc
GetLastError
GetTempPathA
GetModuleHandleA
SetLastError
GetVersionExA
LeaveCriticalSection
GetCurrentThread
VirtualAlloc
TlsFree
Sleep

Exports

Exports

ExecCodeModule
Method_Self
Module_New
destroy_write_struct

Sections

.text
Size: 188KB - Virtual size: 185KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bce968462cf93ed7a9b341475aa1e3ad

Headers

File Characteristics

Imports

user32

msvcrt

advapi32

kernel32

Exports

Exports

Sections

.text Size: 188KB - Virtual size: 185KB

.rdata Size: 76KB - Virtual size: 75KB

.data Size: 112KB - Virtual size: 112KB

.rsrc Size: 204KB - Virtual size: 203KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 188KB - Virtual size: 185KB

.rdata
Size: 76KB - Virtual size: 75KB

.data
Size: 112KB - Virtual size: 112KB

.rsrc
Size: 204KB - Virtual size: 203KB

.reloc
Size: 8KB - Virtual size: 7KB