22f91a01c0549bb9dad1cad8a1ff0c87d7cb5a887d873163a8a58f20004035d0

General

Target

22f91a01c0549bb9dad1cad8a1ff0c87d7cb5a887d873163a8a58f20004035d0
Size

340KB
MD5

4662ff9e483c5792b47f49511837cad0
SHA1

651102808f96a81dbd4a68660f56d91b573ffbb3
SHA256

22f91a01c0549bb9dad1cad8a1ff0c87d7cb5a887d873163a8a58f20004035d0
SHA512

e711b19da6f81027ea50a0a8c3463547182cb9ccfbe389f57e79e4816bc4cf0d83228d991d7c18dfd77d728ceb75b103721b223d97f9c8c81b141528c9cbcceb
SSDEEP

6144:msDhzv7dpAe2BZHJc1M5nVXFvfvM77KXePpY:mI7dpA1HWi5HvfvM7dP

Score

N/A

Malware Config

Signatures

Files

22f91a01c0549bb9dad1cad8a1ff0c87d7cb5a887d873163a8a58f20004035d0
.dll windows x86

0970d5c85e8f12ac25c2dc8ceac79396

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxA
GetDC
ReleaseDC
GetWindowRect
wsprintfA
GetParent
GetWindowThreadProcessId

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

msvcrt

fwrite
_assert
strcpy
exit
fread
strstr
sscanf
fprintf
atol
ftell
_ftol
strncmp
_iob
rand
strcmp
fclose
fgets
abort
realloc
malloc
memcpy
sprintf
getenv
memmove
_stricmp
fseek
atoi
calloc
fopen
memset
strtok
free
_CIpow

kernel32

TlsSetValue
GlobalFree
GlobalSize
GetProcAddress
GetLastError
EnterCriticalSection
GetTickCount
GetModuleFileNameA
VirtualFree
GetStartupInfoA
LeaveCriticalSection
GetDateFormatA
GetCurrentThreadId
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceCounter
GlobalAlloc
FreeLibrary
CreateFileA
IsBadReadPtr
TlsFree
GetModuleHandleA
TlsGetValue
TlsAlloc
LoadLibraryA
Sleep
SetThreadPriority
SetLastError
VirtualAlloc

Exports

Exports

BaseException
Decode
GetDefaults
Items
StringAAsString
UserWarning
set_invalid
set_swap
vUnloadModule

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0970d5c85e8f12ac25c2dc8ceac79396

Headers

File Characteristics

Imports

user32

advapi32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 64KB - Virtual size: 63KB

.data Size: 92KB - Virtual size: 92KB

.rsrc Size: 84KB - Virtual size: 83KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 64KB - Virtual size: 63KB

.data
Size: 92KB - Virtual size: 92KB

.rsrc
Size: 84KB - Virtual size: 83KB

.reloc
Size: 8KB - Virtual size: 7KB