938adec77a8ebcbb22068a58708c25ee816457bfeafcd878172b024d065836be

Sharing

Copy URL Twitter E-mail

General

Target

938adec77a8ebcbb22068a58708c25ee816457bfeafcd878172b024d065836be
Size

72KB
MD5

d262bb3f40a287b01cbd6079c44bbf89
SHA1

52332c3ad2b1b96cd7c5197a454ef5225e4efab0
SHA256

938adec77a8ebcbb22068a58708c25ee816457bfeafcd878172b024d065836be
SHA512

48120932f5321f0358052e32f0746e7f8f5c6a32118026c88c497265cc7ad78f9663196f85ab407bd3df06d77c9bee1c728a587fd3848a6b76ac51166241f3c6
SSDEEP

1536:uvGzbUzwSlWVtGmE5fY7tdMVo2w+Ttk6vEfR/qInOKQ1:NPUzwSl+3rRd90EfR/aJ

Score

N/A

Malware Config

Signatures

Files

938adec77a8ebcbb22068a58708c25ee816457bfeafcd878172b024d065836be
.dll windows x86

6edecea8696bb201da653c0f69efa880

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleW
AllocConsole
WaitNamedPipeA
FindFirstChangeNotificationA
IsValidLocale
GetCurrentProcess
ClearCommError
WriteProfileStringA
GetLocaleInfoA
CreateToolhelp32Snapshot
VerifyVersionInfoW
CompareFileTime
VirtualAlloc
GetStartupInfoW
SetConsoleWindowInfo
CreateFileW
GetProfileIntA
QueueUserWorkItem
LocalReAlloc
GetFileSizeEx
GetCurrentProcessId
GetStringTypeExW
GetLastError
WriteConsoleW
OpenMutexA
GetTimeFormatW
GetFileTime
CreateNamedPipeW
Sleep
CreateIoCompletionPort
GlobalFindAtomA
VerSetConditionMask
VerLanguageNameW
ConvertDefaultLocale
GetDateFormatW
lstrcatA
MapViewOfFile
MoveFileExA
LeaveCriticalSection
UnmapViewOfFile
GetProcessHeap
InterlockedExchange
WaitForSingleObject
LoadLibraryA
ReleaseMutex
GetModuleHandleA
GetComputerNameA
CreateDirectoryA
GetProcAddress
CloseHandle
GetSystemPowerStatus

ole32

RegisterDragDrop
CreateILockBytesOnHGlobal
OleCreateLink
CoTaskMemRealloc
CreateBindCtx
CreateOleAdviseHolder
StringFromIID
CoUnmarshalInterface
CoInitialize
CoUninitialize
CoTaskMemAlloc

shlwapi

StrCmpNIA
PathFindExtensionW
StrStrW
PathFindFileNameW
StrCatBuffA
SHRegSetPathW
StrDupW
StrCpyW
SHDeleteKeyA
PathUndecorateW

gdi32

GetFontResourceInfoW
SetPixel
Chord
CreateICW
CreateScalableFontResourceA
ExtCreateRegion
AbortDoc
SetBitmapDimensionEx
UnrealizeObject
CreateEnhMetaFileA
ExtFloodFill
GetPixelFormat
AddFontResourceA
CreateHatchBrush
GetTextExtentExPointA
RealizePalette
RoundRect
GetSystemPaletteEntries
SetMapperFlags
SetDCBrushColor
EnumFontFamiliesExA
GetViewportOrgEx
GetCharABCWidthsA
SelectObject
EnumFontFamiliesW
GetCharacterPlacementA
Escape
GetKerningPairsA

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6edecea8696bb201da653c0f69efa880

Headers

File Characteristics

Imports

kernel32

ole32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 4KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 1KB

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 4KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 1KB