5422c0c4a20ec57c8e8a424fdb8e7b80508a7e271c8568fc36302b347e8cb340

Sharing

Copy URL Twitter E-mail

General

Target

5422c0c4a20ec57c8e8a424fdb8e7b80508a7e271c8568fc36302b347e8cb340
Size

404KB
MD5

7c8931703fda92af4519f1508b23a230
SHA1

32a88529fbf7e06d89c48594fce2516419d3f842
SHA256

5422c0c4a20ec57c8e8a424fdb8e7b80508a7e271c8568fc36302b347e8cb340
SHA512

a65813dbae0bc591e3d6c616e7fb0afd695a898d54fce7eac0835588c4fd6a290feedc0fb05796edf81809a055427e0b5fe10f8d6d9c8501505b4feed5439572
SSDEEP

12288:pdlqZlksj/QRPDtF2UOj8KVJSQK20ojoz99g:pdlqX/QRpJU7/SQK1me

Score

N/A

Malware Config

Signatures

Files

5422c0c4a20ec57c8e8a424fdb8e7b80508a7e271c8568fc36302b347e8cb340
.dll windows x86

da4d5c887ed7172b9a5089a2fc0a3850

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoTaskMemRealloc
CoInitialize
CoInitializeEx
CoCreateInstance
CoTaskMemAlloc

oleaut32

SysAllocString
SysStringLen
LoadTypeLi
VarUI4FromStr
SysFreeString
UnRegisterTypeLi
RegisterTypeLi

shell32

ShellExecuteW

kernel32

RaiseException
GlobalFree
GetCurrentProcessId
LeaveCriticalSection
InterlockedDecrement
UnhandledExceptionFilter
FreeLibrary
WaitForSingleObject
VirtualAlloc
DeleteCriticalSection
Sleep
GetSystemTimeAsFileTime
GetTickCount
GetCurrentThreadId
InitializeCriticalSection
CloseHandle
LocalFree
GetModuleFileNameW
GlobalAlloc
SetUnhandledExceptionFilter
CreateMutexW
QueryPerformanceCounter
lstrcmpiW
GetModuleHandleW
GetDateFormatA
ReadFile
InterlockedIncrement
CreateFileW
GetModuleHandleA
LoadResource
GetVersionExA
DeviceIoControl
MultiByteToWideChar
TerminateProcess
GetLastError
InterlockedExchange
WideCharToMultiByte
EnterCriticalSection
lstrlenW
LocalAlloc
InterlockedCompareExchange
SetEvent

advapi32

RegQueryInfoKeyW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey

Exports

Exports

CallFunctionObjArgs
EOFError
HasKeyString
Number_Xor
OSError
Register
set_swap_alpha

Sections

.text
Size: 188KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

da4d5c887ed7172b9a5089a2fc0a3850

Headers

File Characteristics

Imports

ole32

oleaut32

shell32

kernel32

advapi32

Exports

Exports

Sections

.text Size: 188KB - Virtual size: 186KB

.rdata Size: 88KB - Virtual size: 87KB

.data Size: 52KB - Virtual size: 52KB

.rsrc Size: 64KB - Virtual size: 63KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 188KB - Virtual size: 186KB

.rdata
Size: 88KB - Virtual size: 87KB

.data
Size: 52KB - Virtual size: 52KB

.rsrc
Size: 64KB - Virtual size: 63KB

.reloc
Size: 8KB - Virtual size: 7KB