dc14a102e1752e07ce19cb822ac30f2f4f41c6d744b64a1f403491adf9ca9d90

Sharing

Copy URL Twitter E-mail

General

Target

dc14a102e1752e07ce19cb822ac30f2f4f41c6d744b64a1f403491adf9ca9d90
Size

204KB
MD5

f9bb2ba62cf0d4d16d2359b339e62c31
SHA1

c9ee7565197fd5c30477e0f037097643d588022d
SHA256

dc14a102e1752e07ce19cb822ac30f2f4f41c6d744b64a1f403491adf9ca9d90
SHA512

a04a7e0b2d9a868f86e89b411eddd33efd47641f65835c15cc821d0fba340b162b40bcb31dab5eaa23222558efe32e4d57540dda631fc32fa48a3e6381c8a430
SSDEEP

3072:4kwVU8gdtYRxagcHUvOB66RkvqObLM+ZY8ugXj5C+V/vSf1RsIOX7Xq2/WWl:YpgvYRxaBU23R1OXMgY8xR/ajsnXDqY

Score

N/A

Malware Config

Signatures

Files

dc14a102e1752e07ce19cb822ac30f2f4f41c6d744b64a1f403491adf9ca9d90
.dll windows x86

e8cd86f8f32dccfa630300232dd4535f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
GetCurrentProcessId
SuspendThread
GetCurrentProcess
GetLogicalDrives
SetEndOfFile
SetLastError
FindResourceExW
SetWaitableTimer
GetFileAttributesExW
GlobalAddAtomW
MultiByteToWideChar
MoveFileW
TerminateThread
CancelWaitableTimer
VirtualFree
CreateEventW
FindClose
SetCurrentDirectoryW
GetDriveTypeW
GlobalFree
LoadLibraryW
GlobalUnlock
ResetEvent
GetLastError
GetProcessHeap
HeapAlloc
HeapFree
HeapSize
IsBadReadPtr
LoadLibraryA
VirtualAlloc
VirtualProtect
GetSystemTime
WriteFile
MulDiv
SizeofResource
ReadFile
SetEvent
GetModuleFileNameW
ResumeThread
ReadProcessMemory
FreeResource
GetPrivateProfileStringW
InterlockedDecrement
GetModuleHandleW
FreeLibrary
lstrlenW
CloseHandle
DuplicateHandle
Sleep
CreateProcessW
GetCurrentThread
GetProcAddress
WritePrivateProfileStringW

user32

SetCapture
InvalidateRect
DialogBoxParamW
SetWindowPos
UpdateWindow
SetCursorPos
WindowFromPoint
LoadIconW
wsprintfW
DrawTextW
ReleaseDC
GetWindowThreadProcessId
GetMessageW
LoadCursorW
LoadStringW
DefWindowProcW
GetParent
CreatePopupMenu
GetCursorPos
GetSystemMetrics
SetWindowTextW
PostQuitMessage
GetKeyState
SetDlgItemTextW
OffsetRect
GetDlgItem
FillRect
LoadBitmapW
CreateWindowExW
PostThreadMessageW
RedrawWindow
DestroyIcon
VkKeyScanW
SetLayeredWindowAttributes
DestroyMenu

gdi32

SetMapMode
SetBkMode
Rectangle
CreateCompatibleDC
DeleteObject
CreateICW
CreateFontIndirectW
CreateRoundRectRgn
GetStockObject
DeleteDC
CreateCompatibleBitmap
SetDIBits
BitBlt
LineTo

advapi32

GetUserNameW
InitializeSecurityDescriptor
LookupAccountSidW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW

shell32

Shell_NotifyIconW

ole32

CoUninitialize

oleaut32

OleLoadPicture

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e8cd86f8f32dccfa630300232dd4535f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 13KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 13KB

.reloc
Size: 4KB - Virtual size: 2KB