b8562c30ec51addd642143c61a725bb8c386a59cb2b1caa75af44aa81192199f

Sharing

Copy URL Twitter E-mail

General

Target

b8562c30ec51addd642143c61a725bb8c386a59cb2b1caa75af44aa81192199f
Size

84KB
MD5

9b41e71add237834843b22c9cca59754
SHA1

62ff32a994f04fdb9df3cd869b5c66a0cfca8f12
SHA256

b8562c30ec51addd642143c61a725bb8c386a59cb2b1caa75af44aa81192199f
SHA512

188e98dd5f4e33c078754778dea694f6bce084c586721e9bc2ef5b7447bf55013a982604a233aa32309b1dd0229df3b5926b92e46cde7224254d03b6fb69252f
SSDEEP

1536:+HFLy0EwdLGLHcSV1l/MuA6fLl1bBJfl+tUCZAz:oE1eiL8S3l/bAoRJcWd

Score

N/A

Malware Config

Signatures

Files

b8562c30ec51addd642143c61a725bb8c386a59cb2b1caa75af44aa81192199f
.dll windows x86

a61d7809b13429147207dc3562082f0a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
SetLastError
GetComputerNameA
VirtualQuery
lstrlenA
GetVolumeInformationA
CreateFileMappingA
CloseHandle
InterlockedCompareExchange
UnmapViewOfFile
GetCurrentProcessId
Sleep
LoadLibraryA
InterlockedIncrement
CreateDirectoryA
VirtualProtect
ReleaseMutex
GetCommandLineA
WaitForSingleObject
GetProcAddress
LocalFree
InterlockedDecrement
GetTickCount
GetSystemDirectoryA
EnterCriticalSection
GetModuleFileNameA
LeaveCriticalSection
GetNumberOfConsoleInputEvents
GetProfileStringW
FreeEnvironmentStringsW
VirtualFree
VirtualUnlock
CallNamedPipeA
WriteProfileStringA
GetConsoleMode
CancelIo
FindFirstFileA
ReadProcessMemory
VerifyVersionInfoA
GetSystemPowerStatus
SetEvent
TryEnterCriticalSection
GetLongPathNameW
OpenSemaphoreA
GetNumberFormatW
CopyFileW
HeapReAlloc
SetFileApisToOEM
GetFileType
SetupComm
ReadConsoleInputW
CreateSemaphoreA
OpenSemaphoreW
lstrcmpW
OpenThread
UnregisterWait
WaitNamedPipeW
GetConsoleCP
lstrcpynW
IsDBCSLeadByteEx
GlobalAlloc
RemoveDirectoryA
CompareStringW
GetProcessAffinityMask
OpenMutexW
BackupWrite
lstrcatW
SetCurrentDirectoryW
IsValidCodePage
FindCloseChangeNotification
SetLocalTime
SetSystemTime
UnregisterWaitEx
GetSystemInfo
PulseEvent
GetSystemDefaultLangID
ExpandEnvironmentStringsA

user32

LoadBitmapA
SetMenuItemInfoW
SetScrollInfo
IsMenu
SendNotifyMessageW
SubtractRect
CallWindowProcW
CreateDialogParamW
IsChild
SetMessageQueue
DrawEdge
InsertMenuA
CreateDialogIndirectParamA
SendDlgItemMessageA
GetKeyNameTextW
CharNextW
SetScrollPos
TranslateAcceleratorW
GetMessageTime
CopyImage
GetCapture
GetWindowInfo
SetCaretPos
FillRect
TrackPopupMenuEx
GetDCEx
SetParent
DrawFocusRect
CharLowerBuffW
GetCursor
GetMenuItemCount
DialogBoxIndirectParamA
CreateAcceleratorTableA
DeleteMenu
LoadStringW
InternalGetWindowText
LoadCursorW
MessageBoxW
PackDDElParam
GetTopWindow
IsCharAlphaNumericW
ClientToScreen
MoveWindow
GetFocus
IsCharAlphaA
DrawTextExW
CharNextExA
CreateIconIndirect
UnionRect
LoadBitmapW
CheckMenuRadioItem
LoadImageW
GetMenuState
GetClassInfoExW
IntersectRect
MsgWaitForMultipleObjectsEx
GetUpdateRgn
ShowCaret
GetMenuCheckMarkDimensions
DispatchMessageA
RemovePropW
DestroyIcon
EnumDesktopsW
SetWindowsHookExA
DestroyWindow
TranslateMessage
CallNextHookEx
SetTimer
GetParent
SendMessageA
SetWinEventHook
GetWindowThreadProcessId
UnhookWindowsHookEx
CreatePopupMenu

shlwapi

StrToIntA
PathFindNextComponentW
SHSetValueA
PathRemoveBackslashW
PathMatchSpecW
StrCmpNW
StrFormatKBSizeW
PathCompactPathW
StrCmpIW
PathUnquoteSpacesW
StrRChrW
StrCmpW
UrlIsW
PathSkipRootW
PathCommonPrefixW
UrlUnescapeW
StrStrIW
PathCreateFromUrlW

shell32

ExtractIconExA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
CommandLineToArgvW
SHAddToRecentDocs
SHFileOperationW
ShellAboutW
SHGetDesktopFolder
SHBindToParent

Exports

Exports

HpNetARM

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a61d7809b13429147207dc3562082f0a

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

shell32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB