2d233ba6079824484fee070af197f8a850d92106cda32a16f2c7bfe2529aca19

Sharing

Copy URL Twitter E-mail

General

Target

2d233ba6079824484fee070af197f8a850d92106cda32a16f2c7bfe2529aca19
Size

622KB
MD5

342f65a2f8922af8725312490f2caf59
SHA1

9b03943c148a4175e0fc24d0c40125d734d4815b
SHA256

2d233ba6079824484fee070af197f8a850d92106cda32a16f2c7bfe2529aca19
SHA512

818bd2467ee912bc72435fce27675c64298fa609d8cd7d055d6f1af630d6e41868ee12b01b081bdf0d102b47bb90d9e0d822a99b6beb4e601c9672fd1230570d
SSDEEP

12288:xKGwzLmH5msDYyxaKMJfz/W8twNLYhij09eRYHBMO:xKGwzLmH5msDZ0BDWDXj0weh/

Score

N/A

Malware Config

Signatures

Files

2d233ba6079824484fee070af197f8a850d92106cda32a16f2c7bfe2529aca19
.dll windows x86

de3888f4cc06703f49d81b08fd7842b8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

wsprintfA
CreateIconIndirect
EnumThreadWindows
GetKeyboardType
LoadStringA
CharNextA

kernel32

lstrlenA
AllocConsole
CancelIo
CloseHandle
CompareStringA
CreateEventA
CreateFileA
CreateTapePartition
EnterCriticalSection
ExitProcess
FindClose
FindFirstFileA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
FreeUserPhysicalPages
GetCPInfo
GetCommandLineA
GetConsoleDisplayMode
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentConsoleFont
GetCurrentDirectoryA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDevicePowerState
GetDiskFreeSpaceA
GetEnvironmentStringsA
GetFileAttributesA
GetFileAttributesW
GetFileSize
GetFileType
GetFullPathNameA
GetLocalTime
GetLocaleInfoA
GetLogicalDrives
GetModuleHandleA
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetProcessVersion
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeExA
GetStringTypeW
GetSystemDefaultLangID
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount
GetTimeZoneInformation
GetUserDefaultLCID
GetVersion
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalUnlock
Heap32ListNext
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
IsDebuggerPresent
IsValidLocale
LCMapStringA
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LocalAlloc
LocalFileTimeToFileTime
LocalFree
MapViewOfFileEx
Module32Next
MultiByteToWideChar
ProcessIdToSessionId
QueryPerformanceCounter
RaiseException
ReadFile
ResetEvent
RtlUnwind
SetEndOfFile
SetEnvironmentVariableA
SetEvent
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleInformation
SetLastError
SetThreadLocale
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualQuery
WaitCommEvent
WaitForDebugEvent
WaitForSingleObject
WideCharToMultiByte
WriteFile
_lclose
lstrcpynA

setupapi

SetupUninstallNewlyCopiedInfs
CM_Get_Sibling
SetupOpenLog
SetupDiEnumDeviceInterfaces
SetupCloseInfFile
CM_Set_DevNode_Problem

oleaut32

VarCmp
VariantInit
VariantCopyInd
VariantCopy
VariantClear
VariantChangeType
VarUI2FromDate
SysReAllocStringLen
SysFreeString
LPSAFEARRAY_Unmarshal
SafeArrayGetElement
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayPtrOfIndex
SafeArrayPutElement
SysAllocStringLen

wsock32

ntohs
ntohl
htonl
socket

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey
LsaOpenPolicySce

Exports

Exports

DelItemString
GetMagicNumber
ImportModuleNoBlock
Node_Free
ReleaseThread
get_bit_depth
set_sBIT
set_swap_alpha
vEnumTokens

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 449KB - Virtual size: 448KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de3888f4cc06703f49d81b08fd7842b8

Headers

File Characteristics

Imports

user32

kernel32

setupapi

oleaut32

wsock32

advapi32

Exports

Exports

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 449KB - Virtual size: 448KB

.data Size: 68KB - Virtual size: 70KB

.rsrc Size: 17KB - Virtual size: 17KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 449KB - Virtual size: 448KB

.data
Size: 68KB - Virtual size: 70KB

.rsrc
Size: 17KB - Virtual size: 17KB

.reloc
Size: 5KB - Virtual size: 4KB