84c3a6669d64086c284d81287e6f3140e20f45190eddfcbc2b7bbbd50c7d84eb

Sharing

Copy URL Twitter E-mail

General

Target

84c3a6669d64086c284d81287e6f3140e20f45190eddfcbc2b7bbbd50c7d84eb
Size

128KB
MD5

0ffaba1d61c3b81104f51b05ca209800
SHA1

3458adf1e4f55ab7efedc7a41055a2130534dfef
SHA256

84c3a6669d64086c284d81287e6f3140e20f45190eddfcbc2b7bbbd50c7d84eb
SHA512

e28b8526d573e1a89cfd59aef4664b44f14a4a3d172abb5ded7cc24d5c907253e5036abebf66fe97a10876459736fae188aa6170655bcaa3cb5573b3e215be53
SSDEEP

3072:RqbnHbQ/vxzNHjndpCmv6L41eIG4YiaUwrM:RE7Q/vjHbTr1eIYiaUEM

Score

N/A

Malware Config

Signatures

Files

84c3a6669d64086c284d81287e6f3140e20f45190eddfcbc2b7bbbd50c7d84eb
.dll windows x86

90c4fd5dd1d2a4280f6cdb90e2d23593

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
VirtualAlloc
IsValidLocale
LoadLibraryA
GetEnvironmentStringsW
GlobalUnlock
OpenConsoleW
ReleaseSemaphore
FreeLibrary
InitializeCriticalSectionAndSpinCount
RegisterWaitForSingleObject
GetModuleHandleA
GetVersion
WriteFileGather
EnumSystemCodePagesA
GetLocalTime
GetVolumeNameForVolumeMountPointA
ReadConsoleInputA
RtlUnwind
WaitForSingleObject
GetHandleInformation
UnhandledExceptionFilter
ReplaceFile
CloseProfileUserMapping
LocalCompact
DuplicateHandle
GetSystemTime
VerLanguageNameA
_lwrite
SetLocaleInfoA
lstrcmpW

user32

CharPrevA
OemToCharA
CharUpperA
DlgDirListW
GetMessageTime
CopyImage
TranslateMessage
DispatchMessageA
DestroyIcon
GetParent
SetCursorPos
LoadKeyboardLayoutA
SetPropW
CreateIconFromResource
LoadBitmapA
GetCursor
SetMenuDefaultItem
IMPQueryIMEW
IsWindowUnicode
PeekMessageA
SendDlgItemMessageA
RegisterClassExW
ChangeDisplaySettingsExA
GetCaretBlinkTime
PtInRect
PostMessageA
DrawMenuBar
RegisterClassExA
DdeSetUserHandle
CreateDesktopW
MapVirtualKeyExW
GetActiveWindow
DrawStateA
EnumClipboardFormats
CascadeWindows
SetScrollRange
GetAltTabInfoW
DefDlgProcW
CopyAcceleratorTableW
GetKeyboardLayoutList
ReuseDDElParam
IsIconic
CreateMDIWindowW
GetWindowRect

version

GetFileVersionInfoSizeA
VerInstallFileW
VerInstallFileA
VerFindFileA

winmm

mixerGetLineInfoW
midiOutGetErrorTextW
midiInGetErrorTextA
mciGetErrorStringA
waveInReset
mci32Message
mciGetDeviceIDW
mmioSeek
mmioInstallIOProcW
sndPlaySoundA
tid32Message
mixerMessage
mmioFlush
mciSendCommandA
waveInClose
waveOutSetVolume
mmioAdvance
joySetCapture
waveInStart
PlaySoundA
timeGetTime
waveOutPrepareHeader
midiOutSetVolume
mciExecute
midiStreamStop
mmioRenameA
waveInGetID
waveOutGetDevCapsA
mciGetDeviceIDFromElementIDW
wid32Message
mmioGetInfo
waveInStop
mmGetCurrentTask
midiOutGetErrorTextA
waveInGetErrorTextA
mixerGetControlDetailsW
mmioSetInfo
waveOutPause
mixerGetID

msvcrt

_mbscmp
_mbsstr
_mbsspnp
_mbsrchr
_daylight
fwrite
strcoll
_unlink
memset
fseek
fclose
fprintf
fputc
_inpw
_wfindfirsti64
ctime
_acmdln
_chdir
_itow
_ismbckata
__CxxLongjmpUnwind
ferror
printf
fread
_CIfmod
_fstati64
_clearfp
_y0
ftell
putc
feof
_outpd
freopen
__p__tzname
fopen
sprintf
fwprintf
fsetpos
_wstat
fputs
_chgsign

Exports

Exports

Ilomfqr
Xjrwfq

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90c4fd5dd1d2a4280f6cdb90e2d23593

Headers

File Characteristics

Imports

kernel32

user32

version

winmm

msvcrt

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 52KB - Virtual size: 48KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 52KB - Virtual size: 48KB

.reloc
Size: 8KB - Virtual size: 7KB