7b614c12c1dd6f9ca781d6cd5a2a2433c53e4856fa80f8779a9436bd054fa14c

General

Target

7b614c12c1dd6f9ca781d6cd5a2a2433c53e4856fa80f8779a9436bd054fa14c
Size

312KB
MD5

2af7ecf00a5d65c7ae43e249254bff00
SHA1

941311835db7e8f1c780880b99c7effcde0237c7
SHA256

7b614c12c1dd6f9ca781d6cd5a2a2433c53e4856fa80f8779a9436bd054fa14c
SHA512

10eb1bdd5305f6a7cb80075bd2f9583a828b8ae723179e03e3507fc7e9d6e8dad06dbf798ba65ee9162c19361cf751efb09b1a89b648354f33474a690c5448b5
SSDEEP

6144:fSRxgM35PPiVAuzf8H28+hI39leI2XepIoqKquH3InBJ/D:E3VPQf8H2bhsAmI3uH3Ab

Score

N/A

Malware Config

Signatures

Files

7b614c12c1dd6f9ca781d6cd5a2a2433c53e4856fa80f8779a9436bd054fa14c
.dll windows x86

616d55b0ae57392eee4364293d3d8308

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

fseek
_ftol
realloc
fwrite
getenv
free
sprintf
rand
malloc
strtok
strstr
sqrt
strncmp
fclose
strcpy
atoi
exit
memmove
strcmp
fgets
atol
_assert
abort
printf
fprintf
sscanf
_iob
fopen
memcpy
memcmp
calloc
fread
bsearch
ftell
_stricmp
memset
_CIpow
ungetc
atof

user32

CreateMenu
FillRect
GetDC
GetWindowRect
GetParent
UnhookWindowsHookEx
wsprintfA
GetClientRect
MsgWaitForMultipleObjects
ClientToScreen
GetDesktopWindow
GetWindowThreadProcessId
ReleaseDC
MessageBoxA
WindowFromDC
DestroyWindow
MenuItemFromPoint

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

kernel32

GetTickCount
TlsGetValue
CreateFileA
GetProcAddress
LeaveCriticalSection
TlsFree
CancelWaitableTimer
InitializeCriticalSection
SetLastError
GlobalAlloc
EnterCriticalSection
GetStartupInfoA
GetTempPathA
GetDateFormatA
GetCurrentThread
TlsSetValue
GlobalFree
HeapFree
GetVersionExA
FreeLibrary
VirtualAlloc
GetModuleHandleA
Sleep
GetCurrentThreadId
LoadLibraryA
VirtualFree
GetLastError
WriteFile
SetThreadPriority
GetModuleFileNameA
TlsAlloc
GlobalSize
DeleteCriticalSection

Exports

Exports

ASTFromFile
WriteUnraisable
destroy_info_struct
write_chunk

Sections

.text
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

616d55b0ae57392eee4364293d3d8308

Headers

File Characteristics

Imports

msvcrt

user32

advapi32

kernel32

Exports

Exports

Sections

.text Size: 104KB - Virtual size: 102KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 40KB - Virtual size: 40KB

.rsrc Size: 80KB - Virtual size: 78KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 104KB - Virtual size: 102KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 40KB - Virtual size: 40KB

.rsrc
Size: 80KB - Virtual size: 78KB

.reloc
Size: 8KB - Virtual size: 7KB